Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc USA. A security vulnerability exists in Google Chrome prior to version 129.0.6668.58, which stems from an improper implementation of Intents and could lead to UI spoofing...

Nero BackItUp 安全漏洞

Nero BackItUp is a backup program from Nero. A security vulnerability exists in Nero BackItUp that stems from path resolution and UI rendering flaws that could lead to the execution of arbitrary code when a user clicks on a specially crafted entry...

Malicious code in @walletify/ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47d10b25587929b2987efd39df23877c3753147c431eb456cef63e175e70588c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

EUVD-2025-176680

Malicious code in resolvers-chakra-ui-bootstrap-ursa npm...

EUVD-2025-175965

Malicious code in thermochronology-metabolomics-semantic-ui-aquarius npm...

EUVD-2025-179200

Malicious code in eclipse-ursa-element-ui-middleware npm...

EUVD-2025-180362

Malicious code in archaeogenetics-semantic-ui-weywot-gravity npm...

EUVD-2025-180282

Malicious code in astrometry-request-semantic-ui-hermes npm...

MAL-2025-186716 Malicious code in element-ui-nodejs-bellatrix-hapi (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d0756d6fd922c626edc59579a4d716f23cd964716bb8b7d01a1c54534ab451d0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

KLA90261 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerability in the...

HP Integrated Lights-Out Improper Neutralization of Input During Web Page Generation (CVE-2018-7117)

A remote Cross-Site Scripting in HPE iLO 5 Web User Interface vulnerability was identified in HPE Integrated Lights-Out 5 iLO 5 for Gen10 ProLiant Servers earlier than version v1.40. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

EUVD-2025-122507

Malicious code in reveal-md-lynx-semantic-ui-mensa npm...

EUVD-2025-122065

Malicious code in semantic-ui-tool-fornax-package npm...

EUVD-2025-122047

Malicious code in sequelize-semantic-ui-farout-public npm...

EUVD-2025-122079

Malicious code in semantic-ui-dione-graphql-kinetic npm...

EUVD-2025-122072

Malicious code in semantic-ui-leda-dependencies-rate-limiter npm...

EUVD-2025-122063

Malicious code in semantic-ui-weywot-helmet-pino-pretty npm...

EUVD-2025-121846

Malicious code in solis-meteor-element-ui-cluster npm...

EUVD-2025-121540

Malicious code in superagent-transform-betelgeuse-chakra-ui npm...

EUVD-2025-122432

Malicious code in rollup-barnard-chakra-ui-flare npm...