MAL-2025-191926 Malicious code in wayspiritmcp-tpa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 523cbbda7a0fda2addfcd432b1bfcc1df072ee67a593ffce535b7da7005caae8 Package seems to provide an MCP server, but in fact contains attempts to make an LLM agent break safeguards. As the request is about leaves just a flag, it see...

AppsAnywhere Security Breach

AppsAnywhere is a streamlined, centralized and scalable solution from AppsAnywhere, Inc. A security vulnerability exists in AppsAnywhere client versions v1.4.0, v1.4.1, v1.5.1, v1.5.2 macOS, v1.6.0, and v2.0.0, which stems from the fact that symmetric encryption used to protect messages between t...

The vulnerability of the VNC server emulator implementation of QEMU allows a hacker to induce a maintenance failure.

The vulnerability of the VNC server emulation implementation of QEMU is related to insufficient testing of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

hammer_cli SSL Certificate Authentication Security Bypass Vulnerability

Hammer is a general-purpose clamp-based CLI framework from Foreman. hammer-cli provides only the core functionality. A SSL certificate authentication security bypass vulnerability exists in hammercli, which stems from the program failing to properly validate SSL certificates. An attacker could us...

CloudBees Jenkins Active Directory Plugin Security Bypass Vulnerability

Jenkins is the open source automation server.Jenkins provides numerous plug-ins to support building, deploying and automating projects.Jenkins Active Directory plug-in is one of the plug-ins to configure Jenkins via Active Directory authentication username and password. A security bypass...