Malicious code in nerf-nutar-munst (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bbe7c79f1fd9cfbab4425a6baaf2c24a8eb517a06716d8240128a0259af44fdc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-140100

Malicious code in miusan-fa-nerf npm...

Malicious code in miusan-fa-nerf (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 309d2b86b587b13b22bafa9fccfe793113dc0b72e3cacfc9c9b24c2e9b4f8969 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-139978

Malicious code in nerf-nutar-munst npm...

MAL-2025-160865 Malicious code in munidr-nerf-usual (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31862fe0deeb39693794f2da87672e993e807fce88ceaa6dab177086a96b800c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-160866 Malicious code in munidr-nerf-usuasl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca5cbcfd5f048fd43bfb362dd6a61e3c81ed68752f90a5ef34f9d3dc51f1200c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in nerf-page-config-generator (npm)

The package nerf-page-config-generator was found to contain malicious code...

MAL-2025-27300 Malicious code in nerf-page-config-generator (npm)

The package nerf-page-config-generator was found to contain malicious code...

U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex

The United States today unveiled sanctions and indictments against the alleged proprietor of Joker 's Stash, a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The government also indicted and sanctioned a...

nerf-ljubljana.si Cross Site Scripting vulnerability OBB-3589494

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

nerf.hasbro.com XSS vulnerability

Open Bug Bounty ID: OBB-638566 Description| Value ---|--- Affected Website:| nerf.hasbro.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

BSD/x86 - execve (/bin/sh) + seteuid(0) Shellcode (31 bytes)

/ simply execvebinsh+seteuid0 shellcode in 31 bytes written on nasm - my first nasm exp. greetz2: mig darknet /EFnet.org nerf nerf /EFnet.org dev0id rus-sec /EFnet.org rootteam.void.ru / char shellcode = "\x31\xc0\x50\xb0\xb7\xcd\x80\x50\x31\xc0\x50\x68\x2f\x2f\x73"...

Nerf Guns Foam - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Nerf Guns Foam published at the 'play' market has multiple vulnerabilities...

Roger Wilco 1.4.1 - Remote Server Side Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8566/info A vulnerability has been reported for various Roger Wilco server releases. The problem occurs server-side, and can be triggered when processing malformed client packets. Specifically, when connecting to a server...

Linux/x86 - Write to /etc/passwd with uid(0) + gid(0) Shellcode (74 bytes)

Linux/x86 - Write to /etc/passwd with uid0 + gid0 Shellcode 74 bytes. Shellcode exploit for Linuxx86 platform / This shellcode writes to /etc/passwd the string for the user with uid&gid == 0; written by dev0id [email protected] rootteam.void.ru rus-sec /Efnet.org greetz: nerf w00w00 BITS 32 jmp shor...

PHP local DoS: self-fetching throught HTTP

PHP scripting allows "opening" files througth HTTP: $file=fopen"http://host/page.html","r"; If script opening itself throught HTTP, it will result in DoS attack: as much as possible HTTP connections and great number of executing PHP scripts. Timeout settings are useless. Possible solutions: -...