CVE-2026-3951

A security flaw has been discovered in LockerProject Locker 0.0.0/0.0.1/0.1.0. Affected is the function authIsAwesome of the file source-code/Locker-master/Ops/registry.js of the component Error Response Handler. The manipulation of the argument ID results in cross site scripting. The attack can ...

Microsoft Windows Registry Editor Version 5.00 Malicious Registry File Generator

This script generates a malicious Windows Registration Entries .reg file designed to establish persistence on Windows systems. It creates a registry file that, when executed by a user, adds the attacker's payload to Windows auto-run registry keys. Written in PHP...

EUVD-2026-11347

A security flaw has been discovered in LockerProject Locker 0.0.0/0.0.1/0.1.0. Affected is the function authIsAwesome of the file source-code/Locker-master/Ops/registry.js of the component Error Response Handler. The manipulation of the argument ID results in cross site scripting. The attack can ...

CVE-2026-3951

A security flaw has been discovered in LockerProject Locker 0.0.0/0.0.1/0.1.0. Affected is the function authIsAwesome of the file source-code/Locker-master/Ops/registry.js of the component Error Response Handler. The manipulation of the argument ID results in cross site scripting. The attack can ...

CVE-2026-3951

CVE-2026-3951 pertains to LockerProject Locker versions 0.0.0/0.0.1/0.1.0. The vulnerability lies in the function authIsAwesome in file source-code/Locker-master/Ops/registry.js (component: Error Response Handler), where manipulation of the argument ID enables cross-site scripting. The issue is e...

CVE-2026-3951 LockerProject Locker Error Response registry.js authIsAwesome cross site scripting

A security flaw has been discovered in LockerProject Locker 0.0.0/0.0.1/0.1.0. Affected is the function authIsAwesome of the file source-code/Locker-master/Ops/registry.js of the component Error Response Handler. The manipulation of the argument ID results in cross site scripting. The attack can ...

CVE-2017-20203

NetSarang Xmanager Enterprise 5.0 Build 1232, Xmanager 5.0 Build 1045, Xshell 5.0 Build 1322, Xftp 5.0 Build 1218, and Xlpd 5.0 Build 1220 contain a malicious nssock2.dll that implements a multi-stage, DNS-based backdoor. The dormant library contacts a C2 DNS server via a specially crafted TXT...

EUVD-2012-0974

Malware in sbrugna...

EUVD-2025-24966

Malicious code in bioql PyPI...

CVE-2025-9000

A vulnerability was found in Mechrevo Control Center GX V2 5.56.51.48. Affected by this vulnerability is an unknown functionality of the component reg File Handler. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The complexity of an atta...

CVE-2025-9000 Mechrevo Control Center GX V2 reg File uncontrolled search path

A vulnerability was found in Mechrevo Control Center GX V2 5.56.51.48. Affected by this vulnerability is an unknown functionality of the component reg File Handler. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The complexity of an atta...

CVE-2025-9000 Mechrevo Control Center GX V2 reg File uncontrolled search path

A vulnerability was found in Mechrevo Control Center GX V2 5.56.51.48. Affected by this vulnerability is an unknown functionality of the component reg File Handler. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The complexity of an atta...

CVE-2025-9000

The CVE-2025-9000 flaw resides in Mechrevo Control Center GX V2 (version 5.56.51.48), specifically in the reg File Handler component. It enables an uncontrolled search path due to the manipulation of that component, allowing a local attacker to exploit on the host. Reported impact is high for con...

PT-2025-33426 · Unknown · Mechrevo Control Center Gx V2

Name of the Vulnerable Software and Affected Versions: Mechrevo Control Center GX V2 version 5.56.51.48 Description: A vulnerability exists in Mechrevo Control Center GX V2 due to an uncontrolled search path within the reg File Handler component. The issue can be exploited on a local host, with a...

📄 Malicious Windows Registration Entries (.reg) File

This Metasploit module creates a Windows Registration Entries .reg file which adds the specified payload to the Windows Registry. The payload runs upon Windows login for the current user. If the user has elevated privileges when opening the file, the payload will run upon login when any user logs...

Statamic CMS Security Vulnerability

Statamic is a powerful flat file Cms built on Laravel by Statamic USA. used to store all content, templates, assets and settings in a file instead of a database. A security vulnerability exists in Statamic CMS versions 5.3.0 through 5.6.1, which stems from a user's password confirmation informati...

CVE-2023-46389

LOYTEC electronics GmbH LINX-212 and LINX-151 devices all versions are vulnerable to Incorrect Access Control via registry.xml file. This vulnerability allows remote attackers to disclose sensitive information on LINX configuration...

LOYTEC LINX-212 Security Vulnerability

The LOYTEC LINX-212 is a building controller from LOYTEC. A security vulnerability exists in the LOYTEC LINX-212 version 6.2.4 and LINX-151 version 7.2.4, which stems from a vulnerability that allows an attacker to disclose sensitive information on the LINX configuration via the registry.xml file...

PT-2023-29995 · Loytec Electronics Gmbh · Linx-151 +1

Name of the Vulnerable Software and Affected Versions: LOYTEC electronics GmbH LINX-212 and LINX-151 devices all versions Description: The issue allows remote attackers to disclose smtp client account credentials and bypass email authentication due to insecure permissions via the registry.xml fil...

Trojan.Win32.Phires.zm Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/34fb086a88f3a2506b61a17cced3b476.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Phires.zm Vulnerability: Insecure Permissions Description: The malware creates an dir...