Libgcrypt 1.12.2

Libgcrypt is a general-purpose cryptographic library based on the code from GnuPG. It provides functions for all cryptographic building blocks: symmetric ciphers AES, DES, Blowfish, CAST5, Twofish, and Arcfour, hash algorithms MD4, MD5, RIPE-MD160, SHA-1, and TIGER-192, MACs HMAC for all hash...

Malicious code in @settle-sea/supporting-documents (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1a578c532adf03529b20a3a434751c75d17e6c7ea31e4ca1881447db490cc78 The package @settle-sea/supporting-documents was found to contain malicious code. Source: ossf-package-analysis...

EUVD-2025-102027

Malicious code in supportingfalconz3n npm...

EUVD-2025-88634

Malicious code in supportingimpalaz3n npm...

EUVD-2025-75499

Malicious code in supportingcrab-excellentdev npm...

EUVD-2025-73414

Malicious code in supportingsalamanderz3n npm...

EUVD-2025-73417

Malicious code in supportingclamrequirement npm...

Malicious code in supporting_salamander_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 824901f76a96c1f0dc8b837cd859c75bb156a65290488fec2e07317a88c05683 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-66453

Malicious code in supportingeelz3n npm...

EUVD-2025-51685

Malicious code in supporting-jade-leopard npm...

MAL-2025-70965 Malicious code in supporting-moccasin-thrush (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2838be45bf20798d1a6f0a2c74dc95211d6282c16bede0960d4feb9d65deab33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-51686

Malicious code in supporting-gold-mockingbird npm...

EUVD-2025-51683

Malicious code in supporting-sapphire-leech npm...

EUVD-2025-51684

Malicious code in supporting-moccasin-thrush npm...

EUVD-2025-49251

Malicious code in supportingcockroachz3n npm...

ULTIMATE-CYBERSECURITY-MASTER-GUIDE

🛡️ ULTIMATE CYBERSECURITY MASTER GUIDE COLLECTION 📊 Comple...

CVE-2025-0367

CVE-2025-0367 affects the Splunk Supporting Add-on for Active Directory (SA-ldapsearch). The vulnerable component is a regular expression pattern in versions 3.1.0 and earlier, which can be exploited to trigger a Regular Expression Denial of Service (ReDoS). Public records indicate a potential im...

CVE-2025-0367 Regular Expression Denial of Service (ReDoS) in Splunk Supporting Add-on for Active Directory (SA-ldapsearch)

In versions 3.1.0 and lower of the Splunk Supporting Add-on for Active Directory, also known as SA-ldapsearch, a vulnerable regular expression pattern could lead to a Regular Expression Denial of Service ReDoS attack...

CVE-2024-29900

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

Internet Bug Bounty: Path traversal through path stored in Uint8Array in Node.js 20

A path traversal vulnerability was discovered in Node.js 20 through paths stored in Uint8Array objects. The vulnerability allowed bypassing path sanitization protections and reading arbitrary files outside of a restricted directory. The issue was addressed by properly sanitizing Uint8Array paths ...