MAL-2025-191596 Malicious code in telegram-api-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9de851a49849595878a33272868046f71f86d67b3664a73c4357dd58b2640fc The package telegram-api-test was found to contain malicious code...

Malicious code in telegram-api-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9de851a49849595878a33272868046f71f86d67b3664a73c4357dd58b2640fc The package telegram-api-test was found to contain malicious code...

MAL-2025-27605 Malicious code in node-api-test (npm)

The package node-api-test was found to contain malicious code...

Malicious code in node-api-test (npm)

The package node-api-test was found to contain malicious code...

MAL-2024-11420 Malicious code in platform-api-test-framework (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in shoots-api-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 78ebd73df4ce754b9e3a33af932d2b686a05716f83ccf3d7dd99029e73713acc Importing the module triggers sending out the hostname to the package author. It looks to be a placeholder/pentest activity related to BytedDance. --- Category...

MAL-2025-985 Malicious code in shoots-api-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 78ebd73df4ce754b9e3a33af932d2b686a05716f83ccf3d7dd99029e73713acc Importing the module triggers sending out the hostname to the package author. It looks to be a placeholder/pentest activity related to BytedDance. --- Category...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory leak in the vcapapiencoderuletest function that does not properly free allocated memory...

Malicious code in ttat-api-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d20a1138316e89f4d0fa408c74d2aadafbb6d6c62a1bfb5fdececb77409aadd4 Collects basic information about the system, most probably a pentest or bug bounty. --- Category: PROBABLYPENTEST - Packages looking like typical pentest...

MAL-2024-12367 Malicious code in ttat-api-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d20a1138316e89f4d0fa408c74d2aadafbb6d6c62a1bfb5fdececb77409aadd4 Collects basic information about the system, most probably a pentest or bug bounty. --- Category: PROBABLYPENTEST - Packages looking like typical pentest...

Test for submit findings in api

Lines of code Vulnerability details Impact Detailed description of the impact of this finding. dfdsf Proof of Concept Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept. efsdfsf Tools Used Recommended Mitigation...

Malicious Package

Overview martinez-api-test is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

com.erudika:para-jar (=1.31.0), com.erudika:para-server (=1.31.0) +82 more potentially affected by CVE-2020-5408 via org.springframework.security:spring-security-core (=5.1.0.RELEASE)

org.springframework.security:spring-security-core MAVEN version =5.1.0.RELEASE is affected by a known vulnerability. The following packages have a transitive dependency on org.springframework.security:spring-security-core and may be impacted: - com.erudika:para-jar =1.31.0 - com.erudika:para-serv...

EC-CUBE 2.12.6 - Server-Side Request Forgery

EC-CUBE 2.12.6 - Server-Side Request Forgery Exploit Title: EC-CUBE 2.12.6 Server-Side Request Forgery Date: 22/10/16 Exploit Author: Wad Deek Vendor Homepage: http://en.ec-cube.net/ Software Link: http://en.ec-cube.net/download/ Version: 2.12.6en-p1 Tested on: Xampp on Windows7 Fuzzing tool:...

EC-CUBE 2.12.6 Server-Side Request Forgery

Exploit Title: EC-CUBE 2.12.6 Server-Side Request Forgery Date: 22/10/16 Exploit Author: Wad Deek Vendor Homepage: http://en.ec-cube.net/ Software Link: http://en.ec-cube.net/download/ Version: 2.12.6en-p1 Tested on: Xampp on Windows7 Fuzzing tool:...