22 matches found
CVE-2026-26999
A flaw was found in Traefik, an HTTP reverse proxy and load balancer. A remote unauthenticated client can exploit this vulnerability by sending an incomplete Transport Layer Security TLS record, which causes the TLS handshake to stall indefinitely. This can lead to resource exhaustion, such as fi...
EUVD-2025-78167
Malicious code in suitablehookwormz3n npm...
MAL-2025-109280 Malicious code in suitable_badger_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 81df0cb25c4319a45ae66ee73fd5cff041d978825629dc59be15f9ac24d566ee This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in suitable_cephalopod_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3f3a3bcab2e21d945d65e867dd448d6cadd2ad81cb49c4e81a0ac8e440c4fd5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-73427
Malicious code in suitablecephalopodz3n npm...
EUVD-2025-51702
Malicious code in suitable-gray-ladybug npm...
EUVD-2025-51703
Malicious code in suitable-amethyst-peafowl npm...
EUVD-2025-49260
Malicious code in suitablecockroachz3n npm...
EUVD-2025-49258
Malicious code in suitablegamefowlz3n npm...
EUVD-2025-45178
Malicious code in suitabledovez3n npm...
EUVD-2025-45175
Malicious code in suitableyakz3n npm...
EUVD-2025-45177
Malicious code in suitablegiraffez3n npm...
EUVD-2025-45176
Malicious code in suitablemartenz3n npm...
Cross-site Scripting (XSS)
Overview suitable-django-autocomplete is an A suitable Django autocomplete widget using web components Affected versions of this package are vulnerable to Cross-site Scripting XSS via the ModelAutocompleteView class due to insufficient output encoding in the autocomplete functionality. The...
CVE-2022-22364
CVE-2022-22364 affects IBM Controller: 10.4.1, 10.4.2, and 11.0.0. The issue is an External Service Interaction vulnerability caused by improper validation of user-supplied input, allowing a remote attacker to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary...
chronoprod.fr Cross Site Scripting vulnerability OBB-2848015
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Microsoft Credential Security Support Provider - Remote Code Execution
credssp This is a poc code for exploiting CVE-2018-0886. It should be used for educational purposes only. It relies on a fork of the rdpy projecthttps://github.com/preempt/rdpy, allowing also credssp relay. Written by Eyal Karni, Preempt [email protected] Build Instructions Linux If you are usin...
xen-kernel -- leak of per-domain profiling-related vcpu pointer array
The Xen Project reports: A domain's xenoprofile state contains an array of per-vcpu information... This array is leaked on domain teardown. This memory leak could -- over time -- exhaust the host's memory. The following parties can mount a denial of service attack affecting the whole system: A...
Debian Security Advisory DSA 2960-1 (icedove - security update)
Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail and news client: multiple memory safety errors and buffer overflows may lead to the execution of arbitrary code or denial of service. OpenVAS Vulnerability Test $Id: deb2960.nasl 6724 2017-07-14...
Fedora Update for ktuberling FEDORA-2013-10182
Check for the Version of ktuberling OpenVAS Vulnerability Test Fedora Update for ktuberling FEDORA-2013-10182 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...