176929 matches found
PT-2026-45107
eNdonesia Portal 8.7 contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through parameters in mod.php. Attackers can inject SQL through the artid, cid, did, contid, and aboutid parameters across...
indo-cpanel-exploit
🦉 Indo cPanel Exploit Toolkit ⚠️ FOR AUTHORIZED SECURITY TE...
Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks
A previously unknown threat actor has been observed targeting government and military entities in Southeast Asia, alongside a smaller cluster of managed service providers MSPs and hosting providers in the Philippines, Laos, Canada, South Africa, and the U.S., by exploiting the recently disclosed...
FBI Atlanta and Indonesian National Police Take Down W3LLSTORE Phishing Marketplace
FBI Atlanta and Indonesian National Police dismantle W3LLSTORE phishing market linked to $20M fraud, seizing domains and detaining developer...
Malicious code in wind-phi-pi-zeta-virtualize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d7ec2ba0faecdde08cbfe67ccc207c1a3d89f35b8a87f571b29483b2bee8ed7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in tachyon-mesosphere-spinner-pm2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c0199d4ad6da5ed57f1010cac95dc16558ece4d84ae6e6c6fb857dc52e6c6370 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in exec-dactyl-halley-phoebe (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71d5efdab59b297ba7336cb8f8db4a67041c6a6b122bcb9ded3d7e05cf0aef25 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in web-route-final-nu-route (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a5c7be5f1d5e20af05a8a41845cf88aa11d49fe80adadaa957e21395a29b1a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in java-orchestrate-awk-process-virtualize (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23029396724af0865eecdd010c3f17e6739fe0ce56c8d44b3531fbdeac934801 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in cat-meta-stack-minify-try (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 80dec973455eae025b75ae4a2fb66d3f693521c903c9ca3af246808867e0af65 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in vortex-auth0-string-holography (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4b12f620e4fb06f261bdd80d409124bb22468e54001e0012b822d68da3e2741 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mongodb-cz-conventional-changelog-rollup-plugin-biosignature (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b32ece2ef7ce06b92f4ca3800ffeba375ee8a9902c3e47cb0f2dbb8ad0cc57d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in rest-paleomagnetism-eris-got (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e0bc402668138cfaf7a98c94602606b2e89444223aeb567e96a42bef52c285b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in concurrently-hawkingradiation-tailwindcss-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2666bd2deaa384120f711b4ca42f1ee157cd1ece04e11132de099f8803437863 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in vuetify-greatfilter-terser-dysonswarm (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5584b28a5c8bf2d3e596254b7bc342240b88e3d2b09ddf72fbce2ee6d922d906 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bellatrix-websockets-filament-biohacking (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b482c2d556ba583b556025d321187a786b8b6b58a20043a55dcfaa188e66080a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in meteor-jupiter-jupiter-xanthus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46c15bb4dde7cb205f506deb37c235142955b3906d8918fa352ab7add70e6e9f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in mysql-spectron-webdriver-primatology-eslint-plugin (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9acd5009432500e94d681e420e8609ed75797139abe3257f3de9937f8018298 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in docusaurus-mdx-ionosphere-fermiparadox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 26631d15ade64fb563253b7b5ed0e60a649adbece8aa582a4b8871615e46b3fb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in jwt-polaris-accretion-transform (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e37b2693cb2d609541e5af2ae1c48dde95387af1a4eebbc1098447fc26eb9ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...