248 matches found
CVE-2026-22034
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
CVE-2026-22034
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
DEBIAN-CVE-2026-22034
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
EUVD-2026-1676
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
CVE-2026-22034 Snuffleupagus vulnerable to RCE on instances with upload validation enabled but without the VLD package
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
CVE-2026-22034
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
CVE-2026-22034 Snuffleupagus vulnerable to RCE on instances with upload validation enabled but without the VLD package
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
CVE-2026-22034 Snuffleupagus vulnerable to RCE on instances with upload validation enabled but without the VLD package
Snuffleupagus is a module that raises the cost of attacks against website by killing bug classes and providing a virtual patching system. On deployments of Snuffleupagus prior to version 0.13.0 with the non-default upload validation feature enabled and configured to use one of the upstream...
PT-2026-2140
Name of the Vulnerable Software and Affected Versions Snuffleupagus versions prior to 0.13.0 Description Snuffleupagus is a module designed to increase the cost of attacks against websites by eliminating bug classes and offering a virtual patching system. In deployments of Snuffleupagus before...
EUVD-2025-175667
Malicious code in vulcan-semantic-release-pino-adonis npm...
EUVD-2025-176015
Malicious code in telesto-vulcan-chai-cressida npm...
EUVD-2025-175614
Malicious code in webdriver-manager-neptune-vulcan-scorpius npm...
EUVD-2025-179555
Malicious code in cosmiconfig-biosignature-vulcan-pipe npm...
Malicious code in cosmicsilence-quasar-vulcan-gammarayburst (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 866755da032f89e835ad4dcc205c1bb514c50448977117637cdb00b19af44d3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-175668
Malicious code in vulcan-rimraf-sirius-enceladus npm...
EUVD-2025-175680
Malicious code in vuepress-winston-deneb-vulcan npm...
EUVD-2025-175673
Malicious code in vulcan-asthenosphere-babel-exoplanet npm...
EUVD-2025-175671
Malicious code in vulcan-delphinus-protoplanetarydisk-gatsby npm...
EUVD-2025-175670
Malicious code in vulcan-nestjs-pm2-biohacking npm...
EUVD-2025-177733
Malicious code in multiverse-terser-webpack-plugin-vulcan-redgiant npm...