CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2026/01/20 12:0 a.m.•6 views

Unpacking Security Scanners for GitHub Actions Workflows

GitHub Actions is a widely used platform that allows developers to automate the build and deployment of their projects through configurable workflows. As the platform's popularity continues to grow, it has become a target of choice for recent software supply chain attacks. These attacks exploit...

5.6AI score

Snyk•added 2025/12/02 3:43 p.m.•1 views

Malicious Package

Overview eslint-plugin-unicorn-ts-2 is a malicious package. This package uses typosquatting techniques, which are intended to trick users into downloading and installing the malicious package instead of the intended legitimate one. The malicious payload attempts to exfiltrate sensitive data from...

9.8CVSS6.9AI score

The Hacker News•added 2025/12/02 2:17 p.m.•7 views

Malicious npm Package Uses Hidden Prompt and Script to Evade AI Security Tools

Cybersecurity researchers have disclosed details of an npm package that attempts to influence artificial intelligence AI-driven security scanners. The package in question is eslint-plugin-unicorn-ts-2, which masquerades as a TypeScript extension of the popular ESLint plugin. It was uploaded to th...

7.3AI score

SUSE CVE•added 2025/07/19 11:21 p.m.•3 views

SUSE CVE-2025-54059

melange allows users to build apk packages using declarative pipelines. Starting in version 0.23.0 and prior to version 0.29.5, SBOM files generated by melange in apks had file system permissions mode 666. This potentially allows an unprivileged user to tamper with apk SBOMs on a running image,...

4.4CVSS6.8AI score0.0008EPSS

Snyk•added 2025/07/18 8:13 p.m.•1 views

Incorrect Default Permissions

Overview Affected versions of this package are vulnerable to Incorrect Default Permissions due to world-writable permissions set on SBOM files in the file system. An attacker can modify or delete SBOM files by gaining local access to the running image, which may confuse security scanners or disru...

4.8CVSS6.7AI score0.0008EPSS

Github Security Blog•added 2025/07/18 8:13 p.m.•7 views

melange's world-writable permissions expose SBOM files to potential image tampering

It was discovered that the SBOM files generated by melange in apks had file system permissions mode 666: $ apkrane ls https://packages.wolfi.dev/os/x8664/APKINDEX.tar.gz -P hello-wolfi --full --latest | xargs wget -q -O - | tar tzv 2/dev/null var/lib/db/sbom drwxr-xr-x root/root 0 2025-06-23 14:1...

4.4CVSS6.2AI score0.0008EPSS

Exploits0References8Affected Software1

Cvelist•added 2025/07/18 3:40 p.m.•8 views

CVE-2025-54059 melange creates SBOM files in APKs with world-writable permissions

4.4CVSS0.0008EPSS

Exploits0References7

Kitploit•added 2023/10/21 11:30 a.m.•30 views

SecuSphere - Efficient DevSecOps

SecuSphere is a comprehensive DevSecOps platform designed to streamline and enhance your organization's security posture throughout the software development life cycle. Our platform serves as a centralized hub for vulnerability management, security assessments, CI/CD pipeline integration, and...

7.4AI score

Citrix•added 2023/10/12 12:0 a.m.•5 views

Cross Site Scripting (XSS) Identifies NetScaler Redirect VIP as Vulnerable

NetScaler Virtual IP VIP configured for redirect is being labeled as vulnerable by Security Scanners for Cross Site Scripting XSS...

6.3AI score

OSV•added 2023/07/21 9:53 a.m.•2 views

SUSE-SU-2023:2932-1 Security update for python-pip

This update for python-pip fixes the following issues: - Removed .exe files from the RPM package, to prevent issues with security scanners bsc1212015...

7.2AI score

Positive Technologies•added 2023/07/21 12:0 a.m.•2 views

PT-2023-36234 · Unknown · Python-Pip

Name of the Vulnerable Software and Affected Versions: python-pip affected versions not specified Description: The issue with python-pip is related to the presence of .exe files in the RPM package, which could cause problems with security scanners. Recommendations: At the moment, there is no...

7AI score

Positive Technologies•added 2023/07/21 12:0 a.m.•3 views

PT-2023-36233 · Unknown · Python-Pip

7AI score

Cvelist•added 2021/01/13 6:10 p.m.•25 views

CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak)

Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series firewalls are not cleared before the data frame is created. This leaks a small amount of random information from the firewall memory into the...

4.3CVSS4.9AI score0.00088EPSS

Exploits15References1

Palo Alto Networks•added 2021/01/13 5:0 p.m.•110 views

PAN-OS: Information exposure in Ethernet data frame construction (Etherleak)

Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-5000 Series, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series firewalls are not cleared before the data frame is created. This leaks a small amount of random information from the firewall...

4.3CVSS1.7AI score0.04317EPSS

Exploits15References1

Malwarebytes•added 2020/05/06 3:15 p.m.•43 views

Credit card skimmer masquerades as favicon

Malware authors are notorious for their deceptive attempts at staying one step ahead of defenders. As their schemes get exposed, they always need to go back to their bag of tricks to pull out a new one. When it comes to online credit card skimmers, we have already seen a number of evasion...

6.6AI score

n0where•added 2018/11/08 3:21 a.m.•100 views

The AWS Exploitation Framework: Pacu

Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments. Created and maintained by Rhino Security Labs, Pacu allows penetration testers to exploit configuration flaws within an AWS account, using modules to easily expand its...

0.8AI score

Check Point Advisories•added 2018/09/17 12:0 a.m.•0 views

Webmeup BLEXBot Web Indexing Tool

BLEXBot scanning tool is designed to gather information from servers. Such scans might indicate an attempt to disclose sensitive information. Remote attackers can use those security scanners to detect vulnerabilities on a target server...

2.4AI score

ThreatPost•added 2016/11/04 4:53 p.m.•25 views

Commodity 'Exaspy' Spyware Targets High-Level Execs

Researchers say they have discovered commodity Android spyware called Exaspy being used to spy on executives. The spyware, according to Skycure Research Labs, is being sold as a $15-a-month turnkey service online and can be used to intercept nearly all phone-based communications including phone...

0.8AI score