Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2026/05/26 1:1 a.m.4 views

MAL-2026-4718 Malicious code in weavedb-exm-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78ab05b11a1c784b066c89ffaff7bdf3a3351c611818e1d310cf718a64f20aec package.json declares "preinstall": "./vendor/setup", causing every npm install weavedb-exm-sdk to execute vendor/setup — a 976,568-byte Linux x86 EL...

6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/26 1:1 a.m.7 views

Malicious code in weavedb-exm-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 78ab05b11a1c784b066c89ffaff7bdf3a3351c611818e1d310cf718a64f20aec package.json declares "preinstall": "./vendor/setup", causing every npm install weavedb-exm-sdk to execute vendor/setup — a 976,568-byte Linux x86 EL...

6AI score
Exploits0References1
OSV
OSVadded 2026/05/26 1:0 a.m.7 views

MAL-2026-4719 Malicious code in weavedb-exm-sdk-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3992f423f88c69e8c00223cc0ef81f970b8e178f1854beb00ef443586302ad89 package.json declares "preinstall": "./bin/install-deps", which runs a 976KB UPX-packed Linux x86 ELF binary on every npm install. The package...

6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2026/05/26 1:0 a.m.7 views

Malicious code in cwao (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f48b0fefe9d99bcebeaa878f5bb2ca40df917b40785d6b5b8a31cf6e70a44970 package.json declares "preinstall": "./vendor/setup", which directly executes a 976,568-byte packed Linux x86 ELF binary shipped in the tarball. The...

5.9AI score
Exploits0References1
OSV
OSVadded 2026/05/26 12:59 a.m.3 views

MAL-2026-4480 Malicious code in aonote (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df30872a579b6ce2419993ff9bad621f42347097dd43551a26583223e6a98a7b package.json declares "preinstall": "./scripts/postbuild", where scripts/postbuild is a 976KB UPX-packed Linux x86-64 ELF sha256 36abd242... shipped ...

6AI score
Exploits0References1
OSV
OSVadded 2023/01/23 5:1 p.m.5 views

OPENSUSE-SU-2023:0031-1 Security update for upx

upx was updated to fix the following issues: - CVE-2023-23457: Fixed a segmentation fault when processing malicious elf files boo1207122 Update to release 4.0.1 Fix crash when a linux/armeb LZMA-packed binary unpacks itself. Resolve 'CantPackException: bad ElfXXShdrs' with staticly-linked program...

5.5CVSS5.6AI score0.00168EPSS
Exploits1References3
OSV
OSVadded 2008/04/16 3:5 p.m.1 views

DEBIAN-CVE-2008-0314

Heap-based buffer overflow in spin.c in libclamav in ClamAV 0.92.1 allows remote attackers to execute arbitrary code via a crafted PeSpin packed PE binary with a modified length value...

7.5CVSS8.3AI score0.2396EPSS
Exploits2References1
Rows per page
Query Builder