Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OSV
OSVadded 2025/01/31 3:1 a.m.3 views

MAL-2025-748 Malicious code in react-native-country-picker-modal-modified (npm)

The package executes harmful command in pre-installation script to send sensitive data to an arbitrary domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 69921c906d4d0ecfa3ba0de532e27f29b18c6be04a563ba99aa0590b1fcc77a8 Any computer that has this package install...

7.1AI score
Exploits0References1
OSV
OSVadded 2025/01/31 3:1 a.m.1 views

MAL-2025-732 Malicious code in elabasia-mobileapp-react-native-ui (npm)

The package executes harmful command in pre-installation script to send sensitive data to an arbitrary domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ba40a9eda5717392c99efe0516b4a42a0606f1f80cfa4f4887aa56fd0a4eaf93 Any computer that has this package install...

7.1AI score
Exploits0References3
NVD
NVDadded 2021/09/27 2:15 p.m.15 views

CVE-2021-34409

It was discovered that the installation packages of the Zoom Client for Meetings for MacOS Standard and for IT Admin installation before version 5.2.0, Zoom Client Plugin for Sharing iPhone/iPad before version 5.2.0, and Zoom Rooms for Conference before version 5.1.0, copy pre- and post-...

7.8CVSS0.00038EPSS
Exploits0References1
Veracode
Veracodeadded 2017/09/07 2:45 a.m.16 views

Symbolic Link Attack

instack-undercloud is vulnerable to symbolic link attacks. The library uses a hardcoded temporary files during pre-installation, allowing a malicious user to conduct a symbolic link attack and overwrite arbitrary files...

6.4CVSS6.8AI score0.00079EPSS
Exploits0References8Affected Software1
The Hacker News
The Hacker Newsadded 2016/03/16 3:35 a.m.21 views

Russia Rejects Google's Appeal and Orders to Stop Pre-Installing its own Android Apps

The Giant search engine Google has lost an anti-monopoly appeal in Russia against ruling related to its Android mobile OS The Moscow Arbitration Court on Monday ruled that Google had violated its dominant position with the help of its free open source mobile platform "Android" by forcing its own...

6.9AI score
Exploits0
securityvulns
securityvulnsadded 2009/06/05 12:0 a.m.40 views

[InterN0T] Geeklog 1.5 - Pre-Installation Vulnerabilities

Geeklog - Pre-Installation Vulnerabilities Version Affected: 1.5.2sr4 18th April 2009 newest Info: See website for more details. Opinion: The system seems to be more secure than most web application systems on the Internet these days. Credits: InterN0T External Links: http://www.geeklog.net/ -::...

7.3AI score
Exploits0
Rows per page
Query Builder