Lucene search
K

7920 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/11 6:56 a.m.10 views

Malicious code in jsonconfig-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 883897a307b53ac17e981eac46b8d6f8c31d88fc2628c6d57c5f7f191ed84b81 During installation, package installs a script that listens for remote commands and executes them. The script is also added to autostart configuration and...

5.9AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.5 views

PT-2026-7684

Chevereto 3.13.4 Core contains a remote code execution vulnerability that allows attackers to inject malicious code during database configuration installation. Attackers can manipulate the database table prefix parameter to write a PHP shell file and execute arbitrary system commands through a...

9.8CVSS6.8AI score0.00969EPSS
Exploits0References5
OSV
OSV
added 2026/02/10 10:45 p.m.7 views

MAL-2026-847 Malicious code in requests-auth-toolkit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 03bb4c04410c4e3c58d7292eb47f8f76a2fbe5265abea29826ac910e890350d0 During installation, package installs a script that listens for remote commands and executes them. The script is also added to autostart configuration and...

5.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/10 10:28 p.m.7 views

Malicious code in gpu-discovery (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ea1fffa4a4969c85232301df3c8d107642ac143fbf51600d166cfd2f8d536e10 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/02/10 8:45 p.m.5 views

MAL-2026-845 Malicious code in rzr-home (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 14fb9c76cd89c8c46f6d961d450c57fcc5f454cd3ce67a53a1868ba36f66fec1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.8AI score
Exploits0References1
NVD
NVD
added 2026/02/10 8:16 p.m.7 views

CVE-2026-1763

Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...

4.6CVSS0.00199EPSS
Exploits0References2
NVD
NVD
added 2026/02/10 8:16 p.m.9 views

CVE-2026-1762

A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions...

2.9CVSS0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 8:6 p.m.5 views

CVE-2026-1763 Enervista UR Setup DLL Hijacking

Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...

4.6CVSS5.4AI score0.00199EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 8:6 p.m.22 views

CVE-2026-1763 Enervista UR Setup DLL Hijacking

Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...

4.6CVSS0.00199EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 8:6 p.m.6 views

CVE-2026-1763

Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and previous versions...

4.6CVSS5.4AI score0.00199EPSS
Exploits0References2
CVE
CVE
added 2026/02/10 8:6 p.m.16 views

CVE-2026-1763

CVE-2026-1763 is a vulnerability in GE Vernova Enervista UR Setup on Windows, affecting Enervista 8.6 and earlier. The CVSS 3.1 base score is 4.6 (MEDIUM) with physical access required, no user interaction, and high integrity impact but low confidentiality impact. Exploitation details, specific v...

4.6CVSS5.4AI score0.00199EPSS
Exploits0References2
CVE
CVE
added 2026/02/10 8:6 p.m.10 views

CVE-2026-1762

A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation. Affected product: Enervista UR Setup, version 8.6 and earlier. Root cause and concrete impact are described as file manipulation with a CVSS v3.1 base score 2.9 (LOW); attack vector: Physical, attack complexity:...

2.9CVSS5.5AI score0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 8:6 p.m.5 views

CVE-2026-1762 Enervista UR Setup Directory Traversal Vulnerability

A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions...

2.9CVSS5.5AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 8:6 p.m.24 views

CVE-2026-1762 Enervista UR Setup Directory Traversal Vulnerability

A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions...

2.9CVSS0.00229EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 8:6 p.m.4 views

CVE-2026-1762

A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions...

2.9CVSS5.5AI score0.00229EPSS
Exploits0References2Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/10 7:22 p.m.7 views

Malicious code in amplify-python-logging (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2e12fee1c4154d81de6e4575af21aa6a760da4f5694746264a2de50e2c5782fe Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.8AI score
Exploits0References1
GithubExploit
GithubExploit
added 2026/02/10 10:24 a.m.219 views

Exploit for CVE-2026-25526

jinjava-cve...

9.8CVSS5.4AI score0.00889EPSS
Exploits1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/10 8:38 a.m.6 views

Malicious code in testppe-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 49f139a3af58a80c706b3bc4b6c38676411528f34be00c79351705767f39eaa4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/02/10 8:38 a.m.4 views

MAL-2026-826 Malicious code in testppe-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 49f139a3af58a80c706b3bc4b6c38676411528f34be00c79351705767f39eaa4 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/10 7:48 a.m.10 views

Malicious code in dev-pipline-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 20dee9221f632983ab927b06c661fda3edf9bea9f5369620acdea3631511876a Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

5.8AI score
Exploits0References1
Rows per page
Query Builder