Lucene search
+L

10 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/07/06 12:0 a.m.13 views

Malicious code in pinokio-redis (npm)

pinokio-redis is a malicious npm package and part of the multi-wave "forge-jsx" cross-platform RAT campaign Wave 4. It was published by npm account 'donimique' [email protected]. The package.json description 'Node.js integration layer for Autodesk Forge' and the bundled README.md literally...

6.1AI score
Exploits0References4
OSV
OSV
added 2026/07/06 12:0 a.m.10 views

MAL-2026-6938 Malicious code in pinokio-redis (npm)

pinokio-redis is a malicious npm package and part of the multi-wave "forge-jsx" cross-platform RAT campaign Wave 4. It was published by npm account 'donimique' [email protected]. The package.json description 'Node.js integration layer for Autodesk Forge' and the bundled README.md literally...

6.1AI score
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-22467

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00239EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/07/25 12:28 a.m.19 views

CVE-2025-44109

A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker-controlled pages...

5.4CVSS7.1AI score0.00239EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 8:15 p.m.6 views

CVE-2025-44109

A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker-controlled pages...

5.4CVSS0.00239EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.8 views

PT-2025-30617 · Pinokio · Pinokio

Name of the Vulnerable Software and Affected Versions: Pinokio version 3.6.23 Description: A URL redirection issue exists in Pinokio version 3.6.23, allowing attackers to redirect users to attacker-controlled pages. Recommendations: Update Pinokio to a newer version that addresses this issue...

5.4CVSS6.3AI score0.00239EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/23 12:0 a.m.5 views

Pinokio Desktop 安全漏洞

Pinokio Desktop is a native AI application automation tool from Pinokio. A security vulnerability exists in Pinokio Desktop version v3.6.23, which stems from the URL redirection feature and could cause users to be redirected to a malicious page...

5.4CVSS6.6AI score0.00239EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/23 12:0 a.m.5 views

CVE-2025-44109

A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker-controlled pages...

6.3AI score0.00239EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/23 12:0 a.m.15 views

CVE-2025-44109

A URL redirection in Pinokio v3.6.23 allows attackers to redirect victim users to attacker-controlled pages...

0.00239EPSS
Exploits0References3
CVE
CVE
added 2025/07/23 12:0 a.m.28 views

CVE-2025-44109

CVE-2025-44109 describes a URL redirection vulnerability in Pinokio v3.6.23 that can redirect victim users to attacker-controlled pages. Affected software: Pinokio Desktop (v3.6.23); underlying issue attributed to the URL redirection feature. Impact per CVSS 3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A...

5.4CVSS6.3AI score0.00239EPSS
Exploits0References3
Rows per page
Query Builder