Lucene search
K

4 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/19 5:10 a.m.15 views

Malicious code in node-slot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d71bcdec983467ab6a47b538e524abc1cdafc98b411761bffb375be17d72009 On npm install, package.json's postinstall hook executes node test.js which invokes code in index.js that performs two distinct attacks on the...

5.9AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/20 7:45 a.m.12 views

Malicious code in pino-formatter (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6318f85af0cd86060232fbc606115e300e1022220ffda545f9e6c6157ef6f55 Package masquerades as a pino-pretty-style logger but performs multiple installer-harming actions when required. On import, dist/logger.js: 1 on Linu...

5.9AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.10 views

PT-2025-24705 · Fortinet · Fortios +1

Name of the Vulnerable Software and Affected Versions: FortiOS versions prior to 7.2.3 FortiProxy versions 7.2.0 through 7.2.2 FortiProxy versions prior to 7.0.8 Description: An incomplete cleanup issue allows a VDOM privileged attacker to add SSH key files on the system silently via crafted CLI...

3.2CVSS6.3AI score0.00183EPSS
Exploits0References6
exploitpack
exploitpack
added 2017/12/26 12:0 a.m.36 views

Trustwave SWG 11.8.0.27 - SSH Unauthorized Access

Trustwave SWG 11.8.0.27 - SSH Unauthorized Access Vulnerability Summary The following advisory describes an unauthorized access vulnerability that allows an unauthenticated user to add their own SSH key to a remote Trustwave SWG version 11.8.0.27. Trustwave Secure Web Gateway SWG “provides...

10CVSS0.9AI score0.13712EPSS
Exploits3
Rows per page
Query Builder