765 matches found
EUVD-2007-3519
Malware in sbrugna...
EUVD-2006-3244
Malware in sbrugna...
EUVD-2007-6357
Malware in sbrugna...
EUVD-2008-6626
Malware in sbrugna...
EUVD-2006-3243
Malware in sbrugna...
EUVD-2006-1780
Malware in sbrugna...
EUVD-2006-6784
Malware in sbrugna...
EUVD-2000-1119
Malware in sbrugna...
EUVD-2024-45570
Malicious code in bioql PyPI...
Advisory ROSA-SA-2025-3014
software: cert-sh-functions 1.0.6 WASP: ROSA-CHROME unaffected versions = cert-sh-functions-1.0.6-5 affected versions cert-sh-functions-1.0.6-5 CVE-ID: CVE-2022-30550 BDU-ID: 2022-04273 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the passdb account database of the Dovecot mail server is relate...
CVE-2025-57431
The Sound4 PULSE-ECO AES67 1.22 web-based management interface is vulnerable to Remote Code Execution RCE via a malicious firmware update package. The update mechanism fails to validate the integrity of manual.sh, allowing an attacker to inject arbitrary commands by modifying this script and...
CVE-2025-59341
esm.sh is a nobuild content delivery networkCDN for modern web development. In 136 and earlier, a Local File Inclusion LFI issue was identified in the esm.sh service URL handling. An attacker could craft a request that causes the server to read and return files from the host filesystem or other...
Exploit for CVE-2025-59342
CVE-2025-59342 - Path Traversal esm-dev Author: Byte Reape...
SUSE CVE-2022-50243
In the Linux kernel, the following vulnerability has been resolved: sctp: handle the error returned from sctpauthasocinitactivekey When it returns an error from sctpauthasocinitactivekey, the activekey is actually not updated. The old shkey will be freeed while it's still used as active key in...
GHSA-G2H5-CVVR-7GMW esm.sh has arbitrary file write via path traversal in `X-Zone-Id` header
Summary A path-traversal flaw in the handling of the X-Zone-Id HTTP header allows an attacker to cause the application to write files outside the intended storage location. The header value is used to build a filesystem path but is not properly canonicalized or restricted to the application’s...
PT-2025-38247
Name of the Vulnerable Software and Affected Versions esm.sh versions prior to 136 Description A Local File Inclusion LFI issue was identified in the esm.sh service URL handling. An attacker could craft a request that causes the server to read and return files from the host filesystem or other...
DEBIAN-CVE-2022-50243
In the Linux kernel, the following vulnerability has been resolved: sctp: handle the error returned from sctpauthasocinitactivekey When it returns an error from sctpauthasocinitactivekey, the activekey is actually not updated. The old shkey will be freeed while it's still used as active key in...
Linux Distros Unpatched Vulnerability : CVE-2018-12556
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The signature verification routine in install.sh in yarnpkg/website through 2018-06-05 only verifies that the yarn release is signed by any arbitrary key in the...
Malicious code in @zalastax/nolb-node-sh (npm)
The package @zalastax/nolb-node-sh was found to contain malicious code...
Malicious code in @zalastax/nolb-react-sh (npm)
The package @zalastax/nolb-react-sh was found to contain malicious code...