Lucene search
K

13374 matches found

Positive Technologies
Positive Technologies
added 2025/10/10 12:0 a.m.5 views

PT-2025-41501

Name of the Vulnerable Software and Affected Versions cross-zip affected versions not specified Description The cross-zip JavaScript package, used for zipping and unzipping files in Node.js environments, is susceptible to a directory traversal issue. This arises from improper handling of...

8.7CVSS6.2AI score
Exploits0References11
Snyk
Snyk
added 2025/10/09 11:54 p.m.3 views

Malicious Package

Overview js-notifiers is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:52 p.m.2 views

Malicious Package

Overview orbital-ledger is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:51 p.m.3 views

Malicious Package

Overview react-outcome-error-alert is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:49 p.m.2 views

Malicious Package

Overview @rsi-arquitectura/rsi-configuration-module is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.2 views

Malicious Package

Overview kpi-media-metrics is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.2 views

Malicious Package

Overview rc-phoenix-tpp-upper-funnel is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.2 views

Malicious Package

Overview mad-1.4.2.2.2.8 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.2 views

Malicious Package

Overview mad-4.0.0.2.2.8. is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.3 views

Malicious Package

Overview mad-10.2.1.2.2.8 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.1 views

Malicious Package

Overview mad-3.0.2.2.2.8. is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.2 views

Malicious Package

Overview mad-2.0.0.2.2.8. is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:45 p.m.1 views

Malicious Package

Overview mad-5.0.0.2.2.8. is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 11:44 p.m.2 views

Malicious Package

Overview pmcrypto-v6-canary is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/10/09 11:23 p.m.2 views

SUSE CVE-2025-39962

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix untrusted unsigned subtract Fix the following Smatch static checker warning: net/rxrpc/rxgkapp.c:65 rxgkyfsdecodeticket warn: untrusted unsigned subtract. 'ticketlen - 10 4' by prechecking the length of what we're tryi...

7.8CVSS6.5AI score0.0013EPSS
Exploits0References3
Snyk
Snyk
added 2025/10/09 10:46 p.m.3 views

Malicious Package

Overview v0-next-shadcn is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 10:46 p.m.2 views

Malicious Package

Overview v0-components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 9:14 p.m.1 views

Malicious Package

Overview redirect-g0ew1n is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 9:14 p.m.2 views

Malicious Package

Overview redirect-jw31kl is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Snyk
Snyk
added 2025/10/09 9:9 p.m.2 views

Malicious Package

Overview redirect-b9fv9e is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
Rows per page
Query Builder