Lucene search
K

34557 matches found

OSV
OSV
added 2025/12/10 6:20 p.m.4 views

GHSA-X93P-W2CH-FG67 Ibexa User Bundle is missing password change validation

Impact The vulnerability is in the password change dialog in the back office. During the transition from v4 to v5 a mistake was made in the validation code which caused the validation of the previous password to not run as expected. This made it possible for a logged in user to change password in...

9.3CVSS6.9AI score0.00123EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/12/08 12:0 a.m.7 views

Privacy Practices of Browser Agents

This paper presents a systematic evaluation of the privacy behaviors and attributes of eight recent, popular browser agents. Browser agents are software that automate Web browsing using large language models and ancillary tooling. However, the automated capabilities that make browser agents...

6.6AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/07 3:30 p.m.147 views

Exploit for Deserialization of Untrusted Data in Facebook React

‼️ CVE-2025-55182 Pwn React2Shell RCE Exploit with Interactive...

10CVSS7.4AI score0.99562EPSS
Exploits374
GithubExploit
GithubExploit
added 2025/12/01 6:8 a.m.72 views

security-research

Security Research This project hosts security advisories and...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/28 12:0 a.m.7 views

An Empirical Study on the Security Vulnerabilities of GPTs

Equipped with various tools and knowledge, GPTs, one kind of customized AI agents based on OpenAI's large language models, have illustrated great potential in many fields, such as writing, research, and programming. Today, the number of GPTs has reached three millions, with the range of specific...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/25 12:0 a.m.32 views

Effective Command-Line Interface Fuzzing with Path-Aware Large Language Model Orchestration

Command-line interface CLI fuzzing tests programs by mutating both command-line options and input file contents, thus enabling discovery of vulnerabilities that only manifest under specific option-input combinations. Prior works of CLI fuzzing face the challenges of generating semantics-rich opti...

7.1AI score
Exploits0
GithubExploit
GithubExploit
added 2025/11/18 8:59 p.m.164 views

security-research-reports

security-research-reports...

7.1AI score
Exploits0
EUVD
EUVD
added 2025/11/12 3:4 a.m.0 views

EUVD-2025-117123

Malicious code in responsible-bronze-sole npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 3:4 a.m.3 views

Malicious code in responsible-bronze-sole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 478321554144be69d7f8d6708d8b4a9e4a22186aeb47f821a209a9b0a9a7d4b4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/12 3:4 a.m.1 views

EUVD-2025-117122

Malicious code in responsible-harlequin-beaver npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 3:4 a.m.2 views

Malicious code in responsible-harlequin-beaver (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b00748c3d2042e9b9898bd60ffeca3a9aac108a888ce82ab243cb07f27cdeed9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 8:46 p.m.5 views

EUVD-2025-102663

Malicious code in responsibleferretz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 8:11 p.m.0 views

EUVD-2025-95444

Malicious code in responsiblecricketz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:31 a.m.3 views

EUVD-2025-78423

Malicious code in responsiblecicadaz3n npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/11 7:31 a.m.2 views

MAL-2025-107973 Malicious code in responsible_cicada_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12c86d2bb6e99db57b63ea471d3477efb7f0e690daaec22fcd3d6c516f160fa6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:31 a.m.1 views

EUVD-2025-78425

Malicious code in responsibleaardwolfz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:26 a.m.2 views

EUVD-2025-80717

Malicious code in responsiblehawk0xrequest npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:16 a.m.2 views

EUVD-2025-68285

Malicious code in responsibleamphibianz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 5:18 a.m.3 views

EUVD-2025-73953

Malicious code in responsibletapirz3n npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 5:18 a.m.1 views

EUVD-2025-73957

Malicious code in responsiblechinchillaz3n npm...

6.6AI score
Exploits0
Rows per page
Query Builder