Lucene search
K

8 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/25 12:16 a.m.5 views

Malicious code in selenium-session (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ecd0e6dc81b318ff25ac39f8955edd9409fd4ffec088409a60da0570a050691 The package selenium-session was found to contain malicious code. Source: google-open-source-security...

6.9AI score
Exploits0References8
OSV
OSV
added 2025/11/25 12:16 a.m.4 views

MAL-2025-191422 Malicious code in selenium-session-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c213ecffb94ad5db9053c2dcf20681d6fe3a5baa0b8ed42d87e01c7ef930a704 The package selenium-session-client was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References9
EUVD
EUVD
added 2025/11/25 12:16 a.m.3 views

EUVD-2025-199356

Malicious code in selenium-session-client npm...

6.6AI score
Exploits0References3
EUVD
EUVD
added 2025/11/25 12:16 a.m.3 views

EUVD-2025-199357

Malicious code in selenium-session npm...

6.6AI score
Exploits0References3
OSV
OSV
added 2025/11/25 12:16 a.m.3 views

MAL-2025-191421 Malicious code in selenium-session (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ecd0e6dc81b318ff25ac39f8955edd9409fd4ffec088409a60da0570a050691 The package selenium-session was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References8
Snyk
Snyk
added 2025/11/24 8:33 p.m.4 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snyk
added 2025/11/24 4:24 p.m.3 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2022/04/20 12:0 a.m.9 views

org.seleniumhq.selenium:selenium-session-map-redis (>=4.0.0-alpha-5 <=4.0.0-alpha-6) potentially affected by CVE-2022-28108 via org.seleniumhq.selenium:selenium-grid (>=4.0.0-alpha-5 <=4.0.0-alpha-6)

org.seleniumhq.selenium:selenium-grid MAVEN version =4.0.0-alpha-5, =4.0.0-alpha-5, =4.0.0-alpha-6 Source cves: CVE-2022-28108 Source advisory: OSV:GHSA-H2RR-M97P-6JQ9...

9.3CVSS7.2AI score0.11816EPSS
Exploits6
Rows per page
Query Builder