EUVD-2021-1889

Malware in sbrugna...

EUVD-2023-2716

Malicious code in bioql PyPI...

MAL-2025-45569 Malicious code in please-powder-read (npm)

The package please-powder-read was found to contain malicious code...

Malicious code in please-powder-read (npm)

The package please-powder-read was found to contain malicious code...

Moderate: Red Hat Security Advisory: glib2 security update

An update for glib2 is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

Contao does not properly manage privileges for page and article fields

Impact Under certain conditions, back end users may be able to edit fields of pages and articles without having the necessary permissions. Patches Update to Contao 5.3.38 or 5.6.1. Workarounds None. For more information If you have any questions or comments about this advisory, open an issue in...

Linux Distros Unpatched Vulnerability : CVE-2018-19871

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Qt before 5.11.3. There is QTgaFile Uncontrolled Resource Consumption. CVE-2018-19871 Note that Nessus relies on the presence of the...

Exploit for Prototype Pollution in Naver Billboard.Js

💥 CVE-2025-49223 - Prototype Pollution in Billboard.js bill...

Enhancing Meme Token Market Transparency: a Multi-Dimensional Entity-Linked Address Analysis for Liquidity Risk Evaluation

Meme tokens represent a distinctive asset class within the cryptocurrency ecosystem, characterized by high community engagement, significant market volatility, and heightened vulnerability to market manipulation. This paper introduces an innovative approach to assessing liquidity risk in meme tok...

BELL-CVE-2025-1182

Bulletin has no description...

MAL-2024-10848 Malicious code in npm-cli-release-please (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware feabb1bb20620ae160755e66696df9de9c058ba94e59b0cd910e81fa6a1829a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in npm-cli-release-please (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware feabb1bb20620ae160755e66696df9de9c058ba94e59b0cd910e81fa6a1829a2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in testing-burp-library-please-ignore (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2249726c84e729bde202820bcc2ac6cdfaec65115b09e7505b33a51158988aad The OpenSSF Package Analysis project identified 'testing-burp-library-please-ignore' @ 1.0.0 npm as malicious. It is considered malicious becaus...

GHSA-CGF8-H3FP-H956 Pleaser privilege escalation vulnerability

please aka pleaser through 0.5.4 allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. If both TIOCSTI and TIOCLINUX are disabled, this cannot be exploited. Here is how to see it in action: $ cd "$mktemp -d" $ git clone --depth 1 https://gitlab.com/edneville/please.git $ cd...

please Security breach

please is a sudo clone by the individual developer of ed neville. A security vulnerability exists in please 0.5.4 and earlier, which stems from allowing privilege escalation via TIOCSTI and/or TIOCLINUX ioctl...

PT-2023-29940 · Please +1 · Please +1

Name of the Vulnerable Software and Affected Versions: please versions 0.5.4 and earlier Description: The issue allows privilege escalation through the TIOCSTI and/or TIOCLINUX ioctl. This can be exploited when these ioctls are not disabled. The vulnerability affects both cases where root wants t...

nobull.com Cross Site Scripting vulnerability OBB-2749158

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

time-please (=1.1.9) potentially affected by CVE-2021-33041 via vmd (=1.34.0)

vmd NPM version =1.34.0 is affected by a known vulnerability. The following packages have a transitive dependency on vmd and may be impacted: - time-please =1.1.9 Source cves: CVE-2021-33041 Source advisory: OSV:GHSA-PFR3-87Q3-65RC...

PT-2021-4173 · Sunhillo · Sunhillo Sureline

Content removed...

PT-2021-19249 · Siemens · Simatic Rf186Ci +22

Name of the Vulnerable Software and Affected Versions: SIMATIC RF166C versions 1.1 through 1.3.2 SIMATIC RF185C versions 1.1 through 1.3.2 SIMATIC RF186C versions 1.1 through 1.3.2 SIMATIC RF186CI versions 1.1 through 1.3.2 SIMATIC RF188C versions 1.1 through 1.3.2 SIMATIC RF188CI versions 1.1...