740 matches found
PT-2026-35817
Name of the Vulnerable Software and Affected Versions django-s3file versions prior to 7.0.2 Description S3FileMiddleware is susceptible to relative path traversal, allowing an attacker to use a modified request to escape pre-signed upload locations. This enables the Django application to load fil...
Machine Learning Operations: Yesterday, Today, and Tomorrow
...
Arbitrary Code Injection
Overview Affected versions of this package are vulnerable to Arbitrary Code Injection in the SpecificCompiler class, when handling untrusted Avro schemas. An attacker can execute code by supplying a malicious schema with commands injected in doc comment values, which can be executed during...
Preparing for Post-Quantum Cryptography
Learn what you can do today to prepare for Q-Day...
Malicious code in i-get-free-coin-master-spin-today-dkldzd (npm)
The package i-get-free-coin-master-spin-today-dkldzd was found to contain malicious code...
MAL-2025-46347 Malicious code in today-only-free-coin-master-spins-working-dzdkzs (npm)
The package today-only-free-coin-master-spins-working-dzdkzs was found to contain malicious code...
MAL-2025-44663 Malicious code in i-get-free-coin-master-spin-today-dkldzd (npm)
The package i-get-free-coin-master-spin-today-dkldzd was found to contain malicious code...
Malicious code in ava-ilable-down-load-mp3-today-draft-730-s4686-umrmvz (npm)
The package ava-ilable-down-load-mp3-today-draft-730-s4686-umrmvz was found to contain malicious code...
MAL-2025-39598 Malicious code in xbox-card-balance-today (npm)
The package xbox-card-balance-today was found to contain malicious code...
MAL-2025-33974 Malicious code in steam-balance-today660 (npm)
The package steam-balance-today660 was found to contain malicious code...
MAL-2025-15133 Malicious code in ava-ilable-down-load-mp3-today-33142-precious-falling-tmwor-vsvzvj (npm)
The package ava-ilable-down-load-mp3-today-33142-precious-falling-tmwor-vsvzvj was found to contain malicious code...
Malicious code in xbox-card-balance-today (npm)
The package xbox-card-balance-today was found to contain malicious code...
MAL-2025-20940 Malicious code in free-spins-in-coin-master-today-only-jdzdza (npm)
The package free-spins-in-coin-master-today-only-jdzdza was found to contain malicious code...
MAL-2025-15131 Malicious code in ava-ilable-down-load-mp3-today-257706-but-id-rather-be-with-you-why9d-hoeovu (npm)
The package ava-ilable-down-load-mp3-today-257706-but-id-rather-be-with-you-why9d-hoeovu was found to contain malicious code...
Halo Security Honored with 2025 MSP Today Product of the Year Award
Miami, Florida, 18th June 2025, CyberNewsWire...
CVE-2024-29814
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CurrencyRate.Today Exchange Rates Widget allows Stored XSS.This issue affects Exchange Rates Widget: from n/a through 1.4.0...
CVE-2024-29930
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CurrencyRate.Today Crypto Converter Widget allows Stored XSS.This issue affects Crypto Converter Widget: from n/a through 1.8.4...
CVE-2021-24829
The Visitor Traffic Real Time Statistics WordPress plugin before 3.9 does not validate and escape user input passed to the todaytrafficindex AJAX action available to any authenticated users before using it in a SQL statement, leading to an SQL injection issue...
Malicious code in working-today--1-blocks-every-second-script-n9qfzq (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware befe2b725bae28bf00547f7be8107d102adf5ae609e0ed65f03b5ba7a40f0662 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Samsung Internet Browser SOP Bypass
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Samsung Internet Browser SOP Bypass', 'Description' = %q This module takes advantage of a Same-Origin Policy SOP bypass vulnerability in the...