389 matches found
EUVD-2024-54845
Malicious code in bioql PyPI...
EUVD-2024-54844
Malicious code in bioql PyPI...
EUVD-2024-1200
Malicious code in bioql PyPI...
Malicious Package
Overview @openzeppelin-compact/fungible-token is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization a...
Linux Distros Unpatched Vulnerability : CVE-2023-40014
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenZeppelin Contracts is a library for secure smart contract development. Starting in version 4.0.0 and prior to version 4.9.3, contracts using ERC2771Context...
Missing Origin Validation
org.apache.zeppelin, zeppelin-shell is vulnerable to Missing Origin Validation. The vulnerability is due to lack of origin validation in WebSocket connections, which allows an attacker to access the Zeppelin server from another origin and retrieve internal information about paragraphs...
Improper Input Validation
org.apache.zeppelin, zeppelin-jdbc is vulnerable to Improper Input Validation. The vulnerability is due to incomplete JDBC URL validation that failed to handle URL encoded input, which allows an attacker to bypass validation checks and potentially exploit database connections...
Cross-Site Scripting (XSS)
org.apache.zeppelin, zeppelin-web is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to an incomplete blacklist of user input, which allows an attacker to inject malicious scripts and execute them in a victim’s browser...
Malicious code in utopia-zeppelin-rrh334-project (npm)
The package utopia-zeppelin-rrh334-project was found to contain malicious code...
Malicious code in zeppelin-xerophyte-8cxj (npm)
The package zeppelin-xerophyte-8cxj was found to contain malicious code...
Malicious code in yurt-zeppelin-tf28 (npm)
The package yurt-zeppelin-tf28 was found to contain malicious code...
Malicious code in zeppelin-kiwi-wnn800-project (npm)
The package zeppelin-kiwi-wnn800-project was found to contain malicious code...
Malicious code in zeppelin-igloo-yzl984-project (npm)
The package zeppelin-igloo-yzl984-project was found to contain malicious code...
Malicious code in zeppelin-underpass-dzsc (npm)
The package zeppelin-underpass-dzsc was found to contain malicious code...
MAL-2025-38007 Malicious code in utopia-zeppelin-rrh334-project (npm)
The package utopia-zeppelin-rrh334-project was found to contain malicious code...
MAL-2025-40676 Malicious code in yurt-zeppelin-tf28 (npm)
The package yurt-zeppelin-tf28 was found to contain malicious code...
MAL-2025-40947 Malicious code in zeppelin-zenith-zsx845-project (npm)
The package zeppelin-zenith-zsx845-project was found to contain malicious code...
MAL-2025-40933 Malicious code in zeppelin-jacket-pci332-project (npm)
The package zeppelin-jacket-pci332-project was found to contain malicious code...
Malicious code in zeppelin-xylophone-i2vr (npm)
The package zeppelin-xylophone-i2vr was found to contain malicious code...
MAL-2025-40938 Malicious code in zeppelin-pebble-tfb084-project (npm)
The package zeppelin-pebble-tfb084-project was found to contain malicious code...