MAL-2025-36718 Malicious code in testdjhfyr76t47hfudhh (npm)

The package testdjhfyr76t47hfudhh was found to contain malicious code...

CVE-2021-36718

SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data Employee name, Employee ID number, Working hours etc' The vulnerabilety has been addressed and fixed on version 11. Default credentials ,...

CVE-2023-36718

creationtimestamp| type| source ---|---|--- 2023-10-10 22:26:53+00:00| seen| https://t.me/cibsecurity/72034...

CVE-2023-36718

Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability...

CVE-2023-36718 Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability

...

CVE-2023-36718

CVE-2023-36718: Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability. CVSS 3.1: Attack Vector LOCAL, Attack Complexity HIGH, Privileges Required LOW, User Interaction NONE, Scope CHANGED, with Confidentiality, Integrity, and Availability impacts rated HIGH. Exploitation s...

CVE-2020-36718

The CVE-2020-36718 entry concerns the WordPress GDPR CCPA Compliance Support plugin (versions up to 2.3). The vulnerability is PHP Object Injection via deserialization of untrusted input njt_gdpr_allow_permissions, exploitable by unauthenticated attackers. Connected sources confirm the issue as P...

CVE-2020-36718 GDPR CCPA Compliance Support <= 2.3 - PHP Object Injection

The GDPR CCPA Compliance Support plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 2.3 via deserialization of untrusted input "njtgdprallowpermissions" value. This allows unauthenticated attackers to inject a PHP Object...

CVE-2021-36718

creationtimestamp| type| source ---|---|--- 2021-12-08 22:23:08+00:00| seen| https://t.me/cibsecurity/33643...

CVE-2021-36718 SYNEL - eharmonynew / Synel Reports version 8.0.2 Default credentials , Security miscommunication , Sensetive data exposure

SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data Employee name, Employee ID number, Working hours etc' The vulnerabilety has been addressed and fixed on version 11. Default credentials ,...

CVE-2021-36718

CVE-2021-36718 affects SYNEL eharmonynew and Synel Reports. Public docs confirm an authentication issue where attackers can log in with default credentials to export reports containing sensitive data (employee name, ID, hours worked). Affected versions include Synel eharmonynew prior to version 1...