321 matches found
Malicious code in baby-loris (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9155edd098ee3fed04541b192087704f5a42b1f149bdd0f4f487d7e0ae941870 The OpenSSF Package Analysis project identified 'baby-loris' @ 1.0.2 npm as malicious. It is considered malicious because: - The package...
CISCO-SA-20190717-SPA500
creationtimestamp| type| source ---|---|--- 2024-12-17 06:41:45+00:00| seen| https://social.circl.lu/users/vulnerabilitylookup/statuses/113666793582617916...
CVE-2023-37599
creationtimestamp| type| source ---|---|--- 2024-12-09 08:20:48+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2023/CVE-2023-37599.yaml...
Malicious code in private-lib-bug-bounty (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ef8c8e73b8b4d3414d06cadfd08f308a41276fe31204d26bc85d1eb566c4923c The OpenSSF Package Analysis project identified 'private-lib-bug-bounty' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in vue-midata (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc06ec1e2eb7c0a1bd2a27e81568ad8ee48c80f63b74284118e768a9740222e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-12000
creationtimestamp| type| source ---|---|--- 2024-11-30 12:00:53+00:00| seen| https://infosec.exchange/users/cve/statuses/113571794336079178 2024-11-30 22:25:58+00:00| seen| https://t.me/cvedetector/11699...
Unspecified vulnerability in Linux kernel (CNVD-2024-46429)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that placing packets into a dql queue after the dma engine has been started can result in a...
Unspecified vulnerability in Linux kernel (CNVD-2024-46414)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unpacked kmalloccachenoprof.No details of the vulnerability are provided at this time...
Malicious code in spex-node-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a39b71a7706221a863e8129674f28f4e5a1aec4ad4dfca5cdb243a0a4916901 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cljs-dopeloop (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9232bb9421a218946057ab6688d62120e80b911ca38062d0ae6c42a951d2cddd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in deriv-app-id-action (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c03deb9ccf8f604f4e3ba191f6d8c2e3f94cc273950f13aafde768a468f13071 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in huggingfaces-hub (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 030324e12766820002cc282dbac28f60bb0f2fc82d459e96c82f073a14e75592 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...
Malicious code in shot2story (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b1cb3804872d11b7f51bfc5588086dcdf5d8b68905b353e7b619ce55bfdf28a0 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...
Malicious code in hllm (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c984c02970a9295543df7e945c9aa0ab34b1102216b42ef189fa6d626274a00a A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...
Malicious code in cms-core-redux (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e3940178777e39b1b416f9ed8d09fdf519cf9f5a3e2de2361da01655b196991d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in sn-flow-client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 40af2ecf250ffc74b1566c2e1b013c1fb2f8e1917dc5878511d1dbaf791c0c48 The OpenSSF Package Analysis project identified 'sn-flow-client' @ 10.10.10 npm as malicious. It is considered malicious because: - The package...
Malicious code in eslint-config-bc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6df69ef80bd1fa8d92354d60af1310a623bcc81f45747601445f423c670e0545 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @linx-ui/shared (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a70dd8ec71455f4177650ed33f72b8da1f8067e2afbebd634836da68f44cbc53 The OpenSSF Package Analysis project identified '@linx-ui/shared' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
Unspecified vulnerability in Linux kernel (CNVD-2024-40294)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a security vulnerability that stems from a null pointer dereference. No details of the vulnerability are provided at this time...
Unspecified vulnerability in Linux kernel (CNVD-2024-40274)
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not checking the validity of an index before accessing the bwparams array. No details of the vulnerability a...