Lucene search
+L

49 matches found

osv
osv
added 2026/06/29 5:33 a.m.12 views

MAL-2026-6585 Malicious code in stake-math (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a475d161b669ae748124a4d6c1da29ebda6e40da4aa5c3c5e8b10645ef96f57a On npm install, the package's postinstall hook scripts/install-check.cjs, wired via package.json scripts.postinstall fetches a JSON config from a...

6.4AI score
Exploits0References7
ossf
ossf
added 2026/06/16 1:34 a.m.13 views

Malicious code in metrics-pipeline-d8k2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 01ad2ee3d3807102a3f02c01af0d3fec46d91e9764eb77a8bcedf9c6be7fc3b0 Package declares "postinstall": "node run.js" in package.json, causing automatic execution of bundled beacon scripts on npm install. beacon29.js load...

5.8AI score
Exploits0References22
osv
osv
added 2026/06/11 4:45 a.m.11 views

MAL-2026-5562 Malicious code in @koadz/sso (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d284d5d0421ad906d63959ed4e0f3354106166311f4066ff794669f52d1eacfb package.json declares a postinstall hook that runs dist/index.js. The compiled bundle contains an appended payload absent from the index.ts source...

5.5AI score
Exploits0References1
snyk
snyk
added 2026/06/06 9:0 p.m.13 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...

9.8CVSS5.6AI score
Exploits0References2
snyk
snyk
added 2026/06/06 9:0 p.m.12 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...

9.8CVSS5.6AI score
Exploits0References2
osv
osv
added 2026/06/05 12:53 a.m.9 views

MAL-2026-5252 Malicious code in executable-stories-formatters (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector abf4dee9166e156fd18cdc223be5d4da38eaa0eda8b28f6fde07190bc5244fd0 No concrete installer-harm indicators were identified in this version of the package. No lifecycle hooks, hardcoded network destinations, credential...

6.2AI score
Exploits0References3
snyk
snyk
added 2026/06/02 9:0 p.m.9 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code containing a malicious binding.gyp file that drops and runs a self-propagating cloud secret stealer. The malicious code attempts to exfiltrate AWS, GCP, Azure, Vault, and Kubernetes credentials, as well as npm an...

9.8CVSS5.6AI score
Exploits0References2
ossf
ossf
added 2026/05/25 6:9 p.m.12 views

Malicious code in @service-user-notifications/set_notifications_not_removable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a890f1cd8313de802c1425ca5603b7d1fabaf84cb1e47b582a4633dae34ccf14 On npm install, scripts/postinstall.js fetches a platform-specific binary from https://oob.moika.tech/payload/linux|mac|win, writes it to a hidden te...

6.5AI score
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/21 12:0 a.m.18 views

PT-2026-42547

Concrete CMS 9.5.0 and below contains a CSRF vulnerability in the install package method of concrete/controllers/single page/dashboard/extend/install.php. An attacker who can cause an authenticated administrator to visit a crafted page, and who has placed or caused a package to be present under...

7.5CVSS6.1AI score0.00171EPSS
Exploits0References2
githubexploit
githubexploit
added 2026/04/12 5:28 p.m.127 views

exploit900

GoldHEN - PS4 Homebrew Enabler...

5.9AI score
Exploits0
osv
osv
added 2026/04/06 5:51 p.m.3 views

CVE-2026-35175 Ajenti has an authorization bypass during custom package installation

Ajenti is a Linux and BSD modular server admin panel. Prior to 2.2.15, an authenticated user using the authusers plugin authentication method could install a custom package even if this user is not superuser. This vulnerability is fixed in 2.2.15...

7.2CVSS6AI score0.00266EPSS
Exploits0References4
ncsc
ncsc
added 2026/02/09 10:39 a.m.9 views

Vulnerabilities fixed in n8n

n8n has fixed vulnerabilities in versions 1.114.3, 1.115.0, 1.123.17, 2.5.2, 1.122.5, 1.123.2, 1.123.18, 2.5.0, 1.123.10, 2.5.0, 2.2.1, 1.123.9, 1.123.12, 2.4.0, 1.118.0, 2.4.0, 2.4.8, and 1.120.3. The vulnerabilities include the use of Buffer.allocUnsafe and Buffer.allocUnsafeSlow, which can lea...

9.9CVSS6.9AI score0.01713EPSS
Exploits0References10
nvd
nvd
added 2026/02/04 6:16 p.m.14 views

CVE-2026-21893

n8n is an open source workflow automation platform. From version 0.187.0 to before 1.120.3, a command injection vulnerability was identified in n8n’s community package installation functionality. The issue allowed authenticated users with administrative permissions to execute arbitrary system...

9.4CVSS0.01343EPSS
Exploits0References2
cvelist
cvelist
added 2026/02/04 5:36 p.m.28 views

CVE-2026-21893 n8n Vulnerable to Command Injection in Community Package Installation

n8n is an open source workflow automation platform. From version 0.187.0 to before 1.120.3, a command injection vulnerability was identified in n8n’s community package installation functionality. The issue allowed authenticated users with administrative permissions to execute arbitrary system...

9.4CVSS0.01343EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/12/03 5:1 p.m.6 views

CVE-2025-13828

SummaryA non privileged user can install and remove arbitrary packages via composer for a composer based installed, even if the flag in update settings for enable composer based update is unticked. ImpactA low-privileged user of the platform can install malicious code to obtain higher privileges...

9CVSS7.2AI score0.00215EPSS
Exploits0References1
cve
cve
added 2025/12/03 4:33 p.m.18 views

CVE-2025-13492

HP Image Assistant is affected in versions prior to 5.3.3. The vulnerability stems from a race condition during package installation that could allow a local attacker to escalate privileges (local, high impact). No exploitation details are provided in the documents; exposure depends on attacker a...

7CVSS6.4AI score0.00072EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/12/03 4:33 p.m.21 views

CVE-2025-13492 HP Image Assistant - Potential Escalation of Privilege

A potential security vulnerability has been identified in HP Image Assistant for versions prior to 5.3.3. The vulnerability could potentially allow a local attacker to escalate privileges via a race condition when installing packages...

5.4CVSS0.00072EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-0291

Malware in sbrugna...

7.8CVSS7.6AI score0.01505EPSS
Exploits1References14
nessus
nessus
added 2025/06/08 12:0 a.m.10 views

Fedora 42 : fcgi (2025-e5cc4338e7)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-e5cc4338e7 advisory. Fix CVE-2025-23016 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

9.3CVSS8.1AI score0.00566EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/22 8:42 p.m.5 views

CVE-2021-39618

In multiple methods of EuiccNotificationManager.java, there is a possible way to install existing packages without user consent due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for...

7.8CVSS7.2AI score0.00122EPSS
Exploits0References1
Rows per page
Query Builder