Ethical-Hacking-Tools-Level2

🛡️ Cybersecurity & Python Portfolio - Level 2 Author: Pa...

MAL-2026-770 Malicious code in xpack-per-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd02e72044e1a432dd520594d89d568cdd80feaef160f24160f04cc549662c08 The package xpack-per-user was found to contain malicious code. Source: ghsa-malware 1182af58fca66833bb4a361e986f5ba960d9e9ab320cd787464bda92246392fb...

Malicious code in conp-dats-editor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adac2b3e811707a0113ec1484330ebada12a632966c81143eab49233e87cabbf The package conp-dats-editor was found to contain malicious code. Source: ossf-package-analysis...

EUVD-2024-55398

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent

Understanding TTPs Tactics, Techniques, and Procedures in malware binaries is essential for security analysis and threat intelligence, yet remains challenging in practice. Real-world malware binaries are typically stripped of symbols, contain large numbers of functions, and distribute malicious...

Persistent Human Feedback, LLMs, and Static Analyzers for Secure Code Generation and Vulnerability Detection

Existing literature heavily relies on static analysis tools to evaluate LLMs for secure code generation and vulnerability detection. We reviewed 1,080 LLM-generated code samples, built a human-validated ground-truth, and compared the outputs of two widely used static security tools, CodeQL and...

Semi-Device-Independent Quantum Random Number Generator Resistant to General Attacks

Quantum random number generators QRNGs produce true random numbers based on the inherent randomness of quantum theory, rendering them a foundational segment of quantum cryptography. Distinguished from trusted-device QRNGs whose security depends on characterized devices, semi-device-independent...

CVE-2024-40685

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

CVE-2024-40685

CVE-2024-40685 affects IBM Operations Analytics – Log Analysis and IBM SmartCloud Analytics – Log Analysis. Connected sources confirm a CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions. Affected versions include IBM Operations Analytics ...

CVE-2024-40685 IBM Operations Analytics - Log Analysis is affected by CSRF Token Replay Attack

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

CVE-2024-40685

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

CVE-2024-40685 IBM Operations Analytics - Log Analysis is affected by CSRF Token Replay Attack

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

UBUNTU-CVE-2026-23092

In the Linux kernel, the following vulnerability has been resolved: iio: dac: ad3552r-hs: fix out-of-bound write in ad3552rhswritedatasource When simplewritetobuffer succeeds, it returns the number of bytes actually copied to the buffer. The code incorrectly uses 'count' as the index for null...

Malicious code in xpack-subscription-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2447449c96d24d0c693d9105d432d9818fa96fb0c408fb371a3dc15167960feb The package xpack-subscription-test was found to contain malicious code. Source: ghsa-malware...

MAL-2026-733 Malicious code in deuro-landing-page (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21bff5e6829c4c257d34d4ad60dd2d5d85f4f6fc67fdffaf74c86bb600ff7cb The package deuro-landing-page was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in partnerss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c370b0dbfdf4006f77ab698296da5eef2bb1a5ca43e91b932711518a3a0b8c5c The package partnerss was found to contain malicious code. Source: ossf-package-analysis...

MAL-2026-717 Malicious code in partnerss (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c370b0dbfdf4006f77ab698296da5eef2bb1a5ca43e91b932711518a3a0b8c5c The package partnerss was found to contain malicious code. Source: ossf-package-analysis...

Exploit for CVE-2026-0828

💀 0xKern3lCrush-M4te-CVE-2026-0828 Windows BYOVD Research &...

IBM Operations Analytics - Log Analysis 跨站请求伪造漏洞

IBM Operations Analytics – Log Analysis is a log analysis software developed by IBM. Versions 1.3.5.0 to 1.3.8.3 of IBM Operations Analytics – Log Analysis contain a cross-site request forgeing vulnerability. This vulnerability is due to a susceptibility to cross-site request forgery attacks, whi...

PT-2026-5866

Name of the Vulnerable Software and Affected Versions IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 IBM SmartCloud Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 Description The software is susceptible to a cross-site request forgery CSRF condition. Successfu...