Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2024/06/25 12:53 p.m.3 views

MAL-2024-2770 Malicious code in npm.kiwicom__smart-faq-sidebar.node_modules-ua (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSVadded 2022/06/20 8:10 p.m.4 views

MAL-2022-1241 Malicious code in azure-arm-datafactory-samples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 89a470850ee7f3521c35471ba1572d1529aa99647c9d09e8bb060f4b354f0226 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Code423n4
Code423n4added 2022/02/06 12:0 a.m.8 views

Sale recipient can be changed mid-sale

Lines of code Vulnerability details Impact The setSaleRecipient function can change the sale recipient while a sale is open. This function can be only called by the owner of the contract, however, since: 1. the saleRecipient is the address that receives all the input tokens deposited by users, an...

6.8AI score
Exploits0
seebug.org
seebug.orgadded 2015/09/18 12:0 a.m.39 views

使用非官方渠道 Xcode 开发 App 造成的后门 (XcodeGhost)

经过对存在问题的应用进行 http 请求包进行抓取结果如下图 可以发现往 http://init.icloud-analysis.com 以POST的方式发送了数据, 而上述url则正是被爆出用于恶意收集用户信息的url 同时,XcodeGhost 病毒还可以在未越狱的 iPhone 上伪造弹窗进行钓鱼攻击,其生成的对话窗口仿真度非常高,很难辨别,因此用户如果在之前输入过iTunes密码,那么一定要尽快进行修改。 受影响部分应用列表: 微信IOS - 6.2.5 12306 - 2.12 滴滴出行 - 4.0.0.6 滴滴打车 - 3.9.7 高德地图 - 7.3.8 同花顺 -...

7.1AI score
Exploits0
ThreatPost
ThreatPostadded 2015/01/06 11:1 a.m.8 views

Users Report Malicious Ads in Skype

Some Skype users have reported seeing malicious ads inside their Skype clients in recent days that lead to a site that tries to download a fake Adobe or Java update. Users in the Skype community forum on Monday said that they have been seeing a banner ad that, if clicked on, will lead to a dodgy...

0.5AI score
Exploits0References1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.14 views

Web2Project 2.3 - SQL Injection Vulnerability

No description provided by source. ------------------------------------------------------------------------ Software................Web2Project 2.3 Vulnerability...........SQL Injection Threat Level............Critical 4/5 Download................http://forums.web2project.net/ Discovery...

7.1AI score
Exploits0
The Hacker News
The Hacker Newsadded 2011/11/15 4:6 p.m.6 views

UCLA psychology department database hacked by Inj3ctor

UCLA psychology department database hacked by Inj3ctor Inj3ctor team of Hackers take responsibility for the release of information from the psychology department's database which included the names, home addresses and dates of birth of 26 applicants to the university. The attacker also published...

7.3AI score
Exploits0
Rows per page
Query Builder