16 matches found
PSF-2025-13
If the value passed to os.path.expandvars is user-controlled a performance degradation is possible when expanding environment variables...
MAL-2025-46124 Malicious code in spectron-webdriver-axios-neptune-transport (npm)
The package spectron-webdriver-axios-neptune-transport was found to contain malicious code...
Malicious code in myth-island-pwa552-project (npm)
The package myth-island-pwa552-project was found to contain malicious code...
Malicious code in test-mlw2-inerm-fatty (npm)
The package test-mlw2-inerm-fatty was found to contain malicious code...
Malicious code in cascade_6wd35_l27dk_xylophone (npm)
The package cascade6wd35l27dkxylophone was found to contain malicious code...
MAL-2025-38655 Malicious code in vscode-reh (npm)
The package vscode-reh was found to contain malicious code...
Malicious code in @taktikangea/molestias-recusandae-soluta (npm)
The package @taktikangea/molestias-recusandae-soluta was found to contain malicious code...
Malicious code in song-ytua9-lr9z1-nymph-project (npm)
The package song-ytua9-lr9z1-nymph-project was found to contain malicious code...
Malicious code in illume-luminous-zot917-project (npm)
The package illume-luminous-zot917-project was found to contain malicious code...
MAL-2025-5861 Malicious code in aspnet-asset-management (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 068ec09bafae1223e1ebcc83c97b674b7188dd9ca13b5b73d241bccad793bf88 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-277 Malicious code in calypso-babel-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b19b336747cffb6dcd17e2bdf7369eaeffb28fe85d0c8198710e89dbced26e94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
adapt-diagnostics (=1.2.0), adversarial-friend (=1.1.8) +63 more potentially affected by CVE-2020-15210 via tensorflow (=2.3.0)
tensorflow PYPI version =2.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - adapt-diagnostics =1.2.0 - adversarial-friend =1.1.8 - aliby-baby =0.1.0, =0.0.1a0, =0.0.1, =1.0.1.0, =0.1.0, =2.0.0, =0.1.0, =0.0.17, =0.1...
DLA-876-1 eject - security update
Bulletin has no description...
Analysis of a known as any arp firewall test Software-bug warning-the black bar safety net
Author: breach Source: breach-a wonderful name Skiller in the Ph4nt0m | Google Groups released a known as you can through any arp is a firewall test software. http://groups.google.com/group/ph4nt0m/browsethread/thread/62ef34de7d39d14b Software description: First of all, this is a demo version wit...
SoX - '.wav' Local Buffer Overflow
//--------------------------------- Begin Code: sox-exploiter.c --------------------------------- / Copyright Rosiello Security 2004 http://www.rosiello.org CVE Reference: CAN-2004-0557 Bug Type: Stack Overflow Date: 01/08/2004 Ulf Harnhammar reported that there are two buffer overflows in the...
Code execution via Microsoft Visual FoxPro
.app files are open without any warning...