Lucene search
K

13369 matches found

OSV
OSV
added 2025/10/29 9:48 p.m.2 views

GO-2025-4006 Excessive CPU consumption in ParseAddress in net/mail

The ParseAddress function constructs domain-literal address components through repeated string concatenation. When parsing large domain-literal components, this can cause excessive CPU consumption...

7.5CVSS8.5AI score0.00613EPSS
Exploits0References3
Snyk
Snyk
added 2025/10/29 1:39 a.m.1 views

Malicious Package

Overview tps-lookup is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/29 1:39 a.m.1 views

Malicious Package

Overview kubernetes-agent is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/29 1:39 a.m.2 views

Malicious Package

Overview twilio-live-interactive-audio is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/29 1:39 a.m.1 views

Malicious Package

Overview replit-desktop-release-server is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score
Exploits0References2
Redos
Redos
added 2025/10/29 12:0 a.m.6 views

ROS-20251029-04

A plug-in vulnerability in the Grafana-Zabbix web-based data submission tool is related to maximum CPU utilization. Exploitation of the vulnerability could allow an attacker due to a custom request with a regular expression, acting remotely, to cause a denial of service...

4.3CVSS6.7AI score0.00323EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.3 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc USA. A security vulnerability exists in Google Go, which stems from the ParseAddress function constructing a domain literal address component by repeating string concatenation...

7.5CVSS6.3AI score0.00613EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.2 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. A security vulnerability exists in Google Go, which stems from the Reader.ReadResponse function constructing a response string by concatenating repetitive strings, which may...

5.3CVSS6.3AI score0.00526EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/10/29 12:0 a.m.2 views

Siemens SIMATIC Devices Improper Validation of Specified Type of Input (CVE-2024-33621)

In the Linux kernel, the following vulnerability has been resolved: ipvlan: Dont Use skb-sk in ipvlanprocessv4 / 6outbound. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

5.5CVSS6.2AI score0.00265EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.5 views

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc USA. A security vulnerability exists in Google Go, which stems from the HTTP server parsing a large number of small cookies without limiting the number, which could lead to...

5.3CVSS6.3AI score0.00534EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2025/10/28 2:33 p.m.123 views

Gitbook

Personal Pentesting Knowledge Base 👋 Welcome! This reposit...

6.7AI score
Exploits0
Snyk
Snyk
added 2025/10/28 2:19 a.m.3 views

Malicious Package

Overview func-analysist is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:18 a.m.5 views

Malicious Package

Overview react-ipack is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorshi...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:17 a.m.4 views

Malicious Package

Overview fzreo-trading-sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:10 a.m.3 views

Malicious Package

Overview @jameson777/mytest7 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:10 a.m.2 views

Malicious Package

Overview @jameson777/mytest4 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:7 a.m.1 views

Malicious Package

Overview cp2-shared-components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:4 a.m.1 views

Malicious Package

Overview isg-iwp-web-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:4 a.m.3 views

Malicious Package

Overview shopify-ruby is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/28 2:4 a.m.1 views

Malicious Package

Overview deere-ui-namespace is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Rows per page
Query Builder