32 matches found
EUVD-2025-202375
Malicious code in rum-events-format npm...
Malicious code in rum-events-format (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6a17ba09614cd69d096859385577957b2737a3dce290dda9712c51fd7179c5 The package rum-events-format was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview rum-events-format is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-192417 Malicious code in rum-events-format (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f6a17ba09614cd69d096859385577957b2737a3dce290dda9712c51fd7179c5 The package rum-events-format was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-36843
Malicious code in bernie-plugin-datadog-rum npm...
MAL-2025-48988 Malicious code in bernie-plugin-datadog-rum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0197846dec97a3a236eb5ede3d773adb5c175e3a2e0a497138424270d1610d9a The package bernie-plugin-datadog-rum was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview bernie-plugin-datadog-rum is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious code in bernie-plugin-datadog-rum (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0197846dec97a3a236eb5ede3d773adb5c175e3a2e0a497138424270d1610d9a The package bernie-plugin-datadog-rum was found to contain malicious code. Source: ghsa-malware...
MAL-2025-43063 Malicious code in @zalastax/nolb-_rum (npm)
The package @zalastax/nolb-rum was found to contain malicious code...
Malicious code in @zalastax/nolb-_rum (npm)
The package @zalastax/nolb-rum was found to contain malicious code...
MAL-2025-6873 Malicious code in adobe-helix-rum-enhancer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 47e5b1e8c964526ea266344bff394d02083744b3bcce422729b60b047c005157 The OpenSSF Package Analysis project identified 'adobe-helix-rum-enhancer' @ 99.99.100 npm as malicious. It is considered malicious because: - T...
Malicious code in adobe-helix-rum-enhancer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 47e5b1e8c964526ea266344bff394d02083744b3bcce422729b60b047c005157 The OpenSSF Package Analysis project identified 'adobe-helix-rum-enhancer' @ 99.99.100 npm as malicious. It is considered malicious because: - T...
Malicious code in @ebay-business-components/marko-rum (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
rum-sky.com Cross Site Scripting vulnerability OBB-3911847
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
wadi-rum.com Improper Access Control vulnerability OBB-3815472
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Malicious code in rum-speedindex (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a49eadf01782e0a434253a00c6ff87b88dea1bd449bcac0a138c573fae1e059c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-5864 Malicious code in rum-speedindex (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a49eadf01782e0a434253a00c6ff87b88dea1bd449bcac0a138c573fae1e059c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-37450
Go Ethereum aka geth through 1.10.21 allows attackers to increase rewards by mining blocks in certain situations, and using a manipulation of time-difference values to achieve replacement of main-chain blocks, aka Riskless Uncle Making RUM, as exploited in the wild in 2020 through 2022...
Design/Logic Flaw
Go Ethereum aka geth through 1.10.21 allows attackers to increase rewards by mining blocks in certain situations, and using a manipulation of time-difference values to achieve replacement of main-chain blocks, aka Riskless Uncle Making RUM, as exploited in the wild in 2020 through 2022...
CVE-2022-37450
Go Ethereum (geth)