EUVD-2020-26462

Malware in sbrugna...

Malicious Package

Overview wppostingduo is a malicious package. This package contains malicious code, and its content was removed from the official package manager. The package appears to be part of a larger campaign targeting user credentials. It, and several other variations, masquerade as automation tools for...

Malicious code in pie-docs (npm)

This package steals IP address and sent it to C&C server in preinstall hook...

CVE-2020-5250

In PrestaShop before version 1.7.6.4, when a customer edits their address, they can freely change the idaddress in the form, and thus steal someone else's address. It is the same with CustomerForm, you are able to change the idcustomer and change all information of all accounts. The problem is...

Deterministic proxy contract address with a hard-coded salt enables token theft.

Lines of code Vulnerability details Impact The retrieveProxyContractAddress function calculates the address of the proxy contract deterministically based only on the delegate address. An attacker could pre-compute proxy contract addresses for target delegates and steal tokens by transferring to...

CVE-2023-32347

Teltonika’s Remote Management System versions prior to 4.10.0 use device serial numbers and MAC addresses to identify devices from the user perspective for device claiming and from the device perspective for authentication. If an attacker obtained the serial number and MAC address of a device, th...

Malicious code in sckiit-learn (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 79c07ccfd83d7d8c0c352db36acf707a169bfa113a8ccda7db9c383a58c3ceeb Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in yvper (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 53b17fd4f9f0d8f72d214b72683b4e65516bd40b5f724d1e615f4c325629c0cb Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in freqtrdae (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 00af430369b40053498cb47de85ddabe14d385320c3d7a74c7fc3380bb22ee57 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

This Steam phish baits you with free Discord Nitro

Weeks ago, we talked about the one effective lure that could get a Discord user to consider clicking on a scam link they were generously given, either by a random user or a legitimate contact who also happened to have fallen for the same ploy: free Discord Nitro subscriptions. And similar to how...

CVE-2020-5250

Summary: CVE-2020-5250 affects PrestaShop versions prior to 1.7.6.4. An attacker can modify address-related fields in the customer form (id_address) and, similarly, id_customer in CustomerForm, enabling theft of someone else’s address/information. This is a server-side validation weakness that al...

MAC address and IP address binding policy of hack-vulnerability warning-the black bar safety net

1 Introduction On the“IP address theft”solutions, the vast majority are taking MAC and IP address binding policy, this practice is very dangerous, this article will this problem be explored. Here need to declare that this article is in the pairs of MAC and IP address binding policy security...

MAC address and IP address binding policy of hack-vulnerability warning-the black bar safety net

1 Introduction On the“IP address theft”solutions, the vast majority are taking MAC and IP address binding policy, this practice is very dangerous, this article will this problem be explored. Here need to declare that this article is in the pairs of MAC and IP address binding policy security...