1026 matches found
EUVD-2025-202124
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Tiny Solutions Media Library Tools media-library-tools allows SQL Injection.This issue affects Media Library Tools: from n/a through = 1.6.15...
EUVD-2025-201496
BACnet Protocol Stack library provides a BACnet application layer, network layer and media access MAC layer communications services. Prior to 1.5.0.rc2, The npduisexpectedreply function in src/bacnet/npdu.c indexes requestpduoffset+2/3/5 and replypduoffset+1/2/4 without verifying that those APDU...
TencentOS Server 4: perl-HTTP-Tiny (TSSA-2024:0938)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0938 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
Mageia: Security Advisory (MGASA-2025-0276)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated perl-CPAN & perl-HTTP-Tiny packages fix security vulnerabilities
CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS. CVE-2023-31484 HTTP::Tiny before 0.083, a Perl core module since 5.13.9 and available standalone on CPAN, has an insecure default TLS configuration where users must opt in to verify certificates...
MAL-2025-137337 Malicious code in tiny_roadrunner_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c87d68629467a2238085832f14aaa5c9bcf22f20b11648d6b592ae380150d7c1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tiny_damselfly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ab0d8575b76df72e0e24bf09af831318a766a2e748ecad4870e42de21581e893 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-101742
Malicious code in tinydamselflyz3n npm...
EUVD-2025-88431
Malicious code in tinyfrogz3n npm...
EUVD-2025-88432
Malicious code in tinychipmunkz3n npm...
EUVD-2025-75427
Malicious code in tinyeel-notthedev npm...
Malicious code in tiny_koala-toolteadev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb59ea874ae309852913251e4bf043ec8813ab23163cd9683388ee8de7dc2539 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-75425
Malicious code in tinylocust-silentdev npm...
EUVD-2025-80279
Malicious code in tinygrasshopper0xrequest npm...
MAL-2025-109702 Malicious code in tiny_anteater_0xrequest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8daddec6b4a44a34a0444a51a3fa1beccb8587fb225fb409e78f69026fcf3ad This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-80281
Malicious code in tinyanteater0xrequest npm...
EUVD-2025-83994
Malicious code in tinyparakeetz3n npm...
EUVD-2025-73271
Malicious code in tinyblackbirdz3n npm...
EUVD-2025-66136
Malicious code in tinyguineafowlz3n npm...
MAL-2025-91118 Malicious code in tiny_guineafowl_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6ed0ca13ca282d5bec16808536bdbe914d93dd2918bb45747155caaee2fed7a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...