Lucene search
K

117 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/15 11:39 p.m.9 views

Malicious code in slow-surf (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f66d2ad1de3674c7aa5dd5efdb00624f0d1ff7f6f1ed38f054e6ca018dea673 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/06/15 11:39 p.m.9 views

MAL-2026-5848 Malicious code in slow-surf (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f66d2ad1de3674c7aa5dd5efdb00624f0d1ff7f6f1ed38f054e6ca018dea673 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/15 5:23 p.m.19 views

Malicious code in surf-lending (npm)

Sibling of [email protected] campaign C2 path /surflending/. Sentinel-9.9.9 dep-confusion squat; preinstall node index.js || true exfils env secrets mnemonic/key/token/blockfrost to raw C2 2.25.140.71:8443/surflending/npm-confusion. c913 + c252. --- -= Per source details. Do not edit below this...

5.4AI score
Exploits0References3
OSV
OSV
added 2026/06/15 5:23 p.m.7 views

MAL-2026-5808 Malicious code in surf-lending (npm)

Sibling of [email protected] campaign C2 path /surflending/. Sentinel-9.9.9 dep-confusion squat; preinstall node index.js || true exfils env secrets mnemonic/key/token/blockfrost to raw C2 2.25.140.71:8443/surflending/npm-confusion. c913 + c252. --- -= Per source details. Do not edit below this...

5.4AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/06/04 12:0 p.m.5 views

adx (>=4.0.0 <=4.1.0), aicommits-rs (>=0.1.0 <=0.2.0) +301 more potentially affected by unknown CVE via surf (>=1.0.1 <=2.3.2)

surf CARGO version =1.0.1, =4.0.0, =0.1.0, =1.0.0, =0.3.0, =0.10.0, =0.3.0, =0.5.0, =0.1.0, =0.6.0, =0.3.0, =0.1.0, =0.0.1, =0.2.4 - async-bybit =0.0.1 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2026-0169...

5.5AI score
Exploits0
OSV
OSV
added 2026/06/04 12:0 p.m.7 views

RUSTSEC-2026-0169 surf is unmaintained

The surf crate is unmaintained, and all versions are affected. For alternatives, consider using reqwest or ureq. See this issue for more context...

5.8AI score
Exploits0References3
RustSec
RustSec
added 2026/06/04 12:0 p.m.12 views

surf is unmaintained

The surf crate is unmaintained, and all versions are affected. For alternatives, consider using reqwest or ureq. See this issue for more context...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.9 views

PT-2026-49130

The surf crate is unmaintained, and all versions are affected. For alternatives, consider using reqwest or ureq. See this issue for more context...

5.2AI score
Exploits0References4
Packet Storm News
Packet Storm News
added 2026/05/19 12:0 a.m.12 views

Detecting Data Exfiltration through I2P Anonymity Networks: A Two-Phase Machine Learning Approach

The Invisible Internet Project I2P provides strong anonymity through garlic routing and distributed network architecture, making it attractive for legitimate privacy needs. Nevertheless, the same properties can be exploited by malicious actors to steal sensitive information from corporate network...

5.8AI score
Exploits0
OSV
OSV
added 2025/11/03 3:15 p.m.4 views

CVE-2025-45663

An issue in NetSurf v3.11 causes the application to read uninitialized heap memory when creating a domevent structure...

6.5CVSS6.8AI score0.00308EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/03 12:0 a.m.8 views

CVE-2025-29699

NetSurf 3.11 is vulnerable to Use After Free in domnodesettextcontent function...

0.0027EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2001-0954

Malware in sbrugna...

10CVSS6.4AI score0.03823EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-4427

Malware in sbrugna...

4.3CVSS6.4AI score0.01107EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-38436

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.05513EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-31156

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.05749EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-39197

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.05604EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-32077

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.05913EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-39196

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.05604EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-38434

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.0081EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:55 a.m.6 views

CVE-2023-34354

A stored cross-site scripting XSS vulnerability exists in the uploadbrand.cgi functionality of peplink Surf SOHO HW1 v6.3.5 in QEMU. A specially crafted HTTP request can lead to execution of arbitrary javascript in another user's browser. An attacker can make an authenticated HTTP request to...

5.4CVSS5.5AI score0.0081EPSS
Exploits1References1
Rows per page
Query Builder