87 matches found
MAL-2026-5455 Malicious code in uipath-sugar-sell (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70cd5d70323e92395a2ea8f61a4089f1cca94e4bb81a7cad1375ae47d3461e6f Package [email protected] exhibits the canonical dependency-confusion shape: an internal-sounding name targeting a UiPath/SugarSell namespace,...
Malicious code in uipath-sugar-sell (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 70cd5d70323e92395a2ea8f61a4089f1cca94e4bb81a7cad1375ae47d3461e6f Package [email protected] exhibits the canonical dependency-confusion shape: an internal-sounding name targeting a UiPath/SugarSell namespace,...
CVE-2026-24636
Missing Authorization vulnerability in Syed Balkhi Sugar Calendar Lite sugar-calendar-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sugar Calendar Lite: from n/a through = 3.9.1...
CVE-2026-24636
Missing Authorization vulnerability in Syed Balkhi Sugar Calendar Lite sugar-calendar-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sugar Calendar Lite: from n/a through = 3.9.1...
CVE-2026-24636 WordPress Sugar Calendar (Lite) plugin <= 3.9.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Syed Balkhi Sugar Calendar Lite sugar-calendar-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sugar Calendar Lite: from n/a through = 3.9.1...
CVE-2026-24636 WordPress Sugar Calendar (Lite) plugin <= 3.9.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Syed Balkhi Sugar Calendar Lite sugar-calendar-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sugar Calendar Lite: from n/a through = 3.9.1...
CVE-2026-24636
CVE-2026-24636 describes a Missing Authorization vulnerability in Sugar Calendar (Lite) plugin for WordPress. The issue affects Sugar Calendar (Lite) versions up to and including 3.10.1 and is categorized as broken/incorrect access control (Missing Authorization). Public sources in the connected ...
CVE-2026-24636
Missing Authorization vulnerability in Syed Balkhi Sugar Calendar Lite sugar-calendar-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sugar Calendar Lite: from n/a through = 3.10.1...
PT-2026-4466
Name of the Vulnerable Software and Affected Versions Syed Balkhi Sugar Calendar Lite versions through 3.10.1 Description An issue exists in Syed Balkhi Sugar Calendar Lite related to incorrectly configured access control security levels, potentially allowing unauthorized access. Recommendations...
WordPress plugin Sugar Calendar (Lite) has a security vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
WordPress Sugar Calendar (Lite) plugin <= 3.9.1 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by daroo in WordPress Plugin Sugar Calendar Lite versions = 3.9.1...
Malicious Package
Overview elf-stats-sugarplum-fireplace-278 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and...
EUVD-2009-2394
Malware in sbrugna...
EUVD-2006-5067
Malware in sbrugna...
EUVD-2006-2460
Malware in sbrugna...
EUVD-2009-2142
Malware in sbrugna...
EUVD-2024-33181
Malicious code in bioql PyPI...
Malicious code in sugar-es7 (npm)
The package sugar-es7 was found to contain malicious code...
MAL-2025-34163 Malicious code in sugar-es7 (npm)
The package sugar-es7 was found to contain malicious code...
MAL-2025-34164 Malicious code in sugar-test-core-separation (npm)
The package sugar-test-core-separation was found to contain malicious code...