VDB

GCVE-110-OSM-2026-1749

GCVE-110-OSM-2026-1749
Advisory PublishedCVSS 9.6/10
Vulnetix · Advisory published April 10, 2026
Obfuscated JavaScript Malware found in the next.config.js file. This is the code for Frontend of Scads application. This payload aligns with previous Nuturino JS compromise. Where this payload contains global['_V']='8-413' as Global Flag

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
9.6/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownall (affected)

References

Browse GCVE Records

71,925 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›