Vulnerabilities

Node.js ionicons-pack module code execution |

July 12, 2022

NAME Node.js ionicons-pack module code execution Platforms Affected:Node.js ionicons-packRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ionicons-pack module could allow a remote attacker...

Node.js footericon module code execution |

July 12, 2022

NAME Node.js footericon module code execution Platforms Affected:Node.js footericonRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js footericon module could allow a remote attacker...

Node.js snei-frames module code execution |

July 12, 2022

NAME Node.js snei-frames module code execution Platforms Affected:Node.js snei-framesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js snei-frames module could allow a remote attacker...

Node.js ajax-library module code execution |

July 12, 2022

NAME Node.js ajax-library module code execution Platforms Affected:Node.js ajax-libraryRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ajax-library module could allow a remote attacker...

Daily Vulnerability Trends: Mon Jul 11 2022

July 11, 2022

Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2020-3452A vulnerability in the web services interface of Cisco Adaptive Security Appliance...

CentOS Web Panel directory traversal | CVE-2022-25046

July 9, 2022

NAME CentOS Web Panel directory traversal Platforms Affected:CentOS Web Panel CentOS Web Panel 0.9.8.1122Risk Level:9.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION CentOS Web Panel...

Node.js allegro-tech-podcast module code execution |

July 9, 2022

NAME Node.js allegro-tech-podcast module code execution Platforms Affected:Node.js allegro-tech-podcastRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js allegro-tech-podcast module could allow a remote attacker...

Known header injection | CVE-2022-33011

July 9, 2022

NAME Known header injection Platforms Affected:Idno Known 1.3.1 Idno Known 1.2.2 Idno Known 1.0.0 Idno Known 0.9.9Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...

TOTOLINK EX300 command execution | CVE-2022-32449

July 9, 2022

NAME TOTOLINK EX300 command execution Platforms Affected:TOTOLINK EX300 V2 V4.0.3c.7484Risk Level:9.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION TOTOLINK EX300 could allow a...

Codoforum file upload | CVE-2022-31854

July 9, 2022

NAME Codoforum file upload Platforms Affected:Codoforum Codoforum 5.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Codoforum could allow a remote authenticated attacker to upload...

Node.js esper-docs module code execution |

July 9, 2022

NAME Node.js esper-docs module code execution Platforms Affected:Node.js esper-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js esper-docs module could allow a remote attacker...

Node.js cloudwatchevents-processor module code execution |

July 9, 2022

NAME Node.js cloudwatchevents-processor module code execution Platforms Affected:Node.js cloudwatchevents-processorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js cloudwatchevents-processor module could allow a remote attacker...

Node.js dependabot-autodeploy-action module code execution |

July 9, 2022

NAME Node.js dependabot-autodeploy-action module code execution Platforms Affected:Node.js dependabot-autodeploy-actionRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js dependabot-autodeploy-action module could allow a remote attacker...

Outline cross-site scripting | CVE-2022-2342

July 9, 2022

NAME Outline cross-site scripting Platforms Affected:outline outline 0.64.3Risk Level:7.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Outlin is vulnerable to cross-site scripting, caused by improper...

Mini-Tmall code execution | CVE-2022-30929

July 9, 2022

NAME Mini-Tmall code execution Platforms Affected:Mini-Tmall Mini-Tmall 1.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mini-Tmall could allow a remote authenticated attacker to execute...

Node.js pixel-server-gateway module code execution |

July 9, 2022

NAME Node.js pixel-server-gateway module code execution Platforms Affected:Node.js pixel-server-gatewayRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js pixel-server-gateway module could allow a remote attacker...

Dell Cloud Mobility for Dell EMC Storage code execution | CVE-2022-33936

July 9, 2022

NAME Dell Cloud Mobility for Dell EMC Storage code execution Platforms Affected:Dell Cloud Mobility for Dell EMC Storage 1.3.0Risk Level:8Exploitability:UnprovenConsequences:Gain...

Node.js compensation-calculator module code execution |

July 9, 2022

NAME Node.js compensation-calculator module code execution Platforms Affected:Node.js compensation-calculatorRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js compensation-calculator module could allow a remote attacker...

Node.js nodejs-resilient-client module code execution |

July 9, 2022

NAME Node.js nodejs-resilient-client module code execution Platforms Affected:Node.js nodejs-resilient-clientRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js nodejs-resilient-client module could allow a remote attacker...

Node.js ts-node-lessons-learned module code execution |

July 9, 2022

NAME Node.js ts-node-lessons-learned module code execution Platforms Affected:Node.js ts-node-lessons-learnedRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js ts-node-lessons-learned module could allow a remote attacker...

Vulnerabilities

Node.js ionicons-pack module code execution |

Node.js footericon module code execution |

Node.js snei-frames module code execution |

Node.js ajax-library module code execution |

Daily Vulnerability Trends: Mon Jul 11 2022

CentOS Web Panel directory traversal | CVE-2022-25046

Node.js allegro-tech-podcast module code execution |

Known header injection | CVE-2022-33011

TOTOLINK EX300 command execution | CVE-2022-32449

Codoforum file upload | CVE-2022-31854

Node.js esper-docs module code execution |

Node.js cloudwatchevents-processor module code execution |

Node.js dependabot-autodeploy-action module code execution |

Outline cross-site scripting | CVE-2022-2342

Mini-Tmall code execution | CVE-2022-30929

Node.js pixel-server-gateway module code execution |

Dell Cloud Mobility for Dell EMC Storage code execution | CVE-2022-33936

Node.js compensation-calculator module code execution |

Node.js nodejs-resilient-client module code execution |

Node.js ts-node-lessons-learned module code execution |

Bently Nevada default account | CVE-2022-29953

CentOS Web Panel command execution | CVE-2022-25048

Node.js teamlead module code execution |

Node.js ovotech module code execution |

Cobalt Strike Beacon Detected – 47[.]111[.]117[.]176:443

Cobalt Strike Beacon Detected – 47[.]108[.]39[.]159:4444

CVE Alert: CVE-2025-30892

CVE Alert: CVE-2025-30853

CVE Alert: CVE-2025-30841

You may have missed