70 matches found
EUVD-2026-41510
libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent transfers that should not know nor use them...
UBUNTU-CVE-2026-9079
libcurl had a flaw that when instructed to clear proxy authentication credentials which made it not do so, leaving the old credentials around to get used for subsequent tranfers that should not know nor use them...
PT-2026-51752
Name of the Vulnerable Software and Affected Versions libcurl affected versions not specified Description A flaw exists where the software fails to clear proxy authentication credentials when instructed to do so. This results in old credentials remaining available and potentially being used for...
PostgreSQL SQL注入漏洞
PostgreSQL is a set of free object-relational database management systems developed by the PostgreSQL organization. This system supports most SQL standards and offers many other features, such as foreign keys, triggers, views, etc. Versions of PostgreSQL prior to 18.4 and 17.10 contained an SQL...
CLSA-2026-1777946639 quagga: Fix of CVE-2018-5381
CVE-2018-5381: bgpd capability parser can enter an infinite loop on invalid OPEN messages whose Multi-Protocol capability has an unrecognized AFI/SAFI, causing a denial of service...
CVE-2026-41926
WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the firewall.cgi binary across five request handlers that apply insufficient input validation. Attackers can inject arbitrary shell commands through vulnerable parameters like websURLFilter,...
CVE-2025-14769
CVE-2025-14769 affects FreeBSD ipfw: the tcp-setmss handler may free packet data and raise an error without halting rule processing. A subsequent rule can then allow traffic after the data is gone, causing a NULL pointer dereference and a Denial of Service when remote-crafted packets are sent if ...
EUVD-2025-117051
Malicious code in subsequent-fuchsia-mongoose npm...
MAL-2025-117238 Malicious code in subsequent_walrus_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 861c7955dfeea57d174d87d27a5c5ffb0500e9b2af898396bc90b533fe058809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-88646
Malicious code in subsequentwalrusz3n npm...
Malicious code in subsequent_walrus_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 861c7955dfeea57d174d87d27a5c5ffb0500e9b2af898396bc90b533fe058809 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-75521
Malicious code in subsequentgamefowl-smiletea npm...
EUVD-2025-80395
Malicious code in subsequentbatreplicateautomation npm...
EUVD-2025-80394
Malicious code in subsequentbeetle0xrequest npm...
Malicious code in subsequent_beetle_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 84710acaff4fcdbd02b85f1f39c3708b7068652bf8549f7b941bf58a5a1ca8c0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-73456
Malicious code in subsequentelephantz3n npm...
EUVD-2025-73454
Malicious code in subsequentlampreyz3n npm...
EUVD-2025-73457
Malicious code in subsequentbugz3n npm...
EUVD-2025-51738
Malicious code in subsequent-chocolate-lizard npm...
EUVD-2025-51736
Malicious code in subsequent-pink-meerkat npm...