MAL-2026-659 Malicious code in atg-atgse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4a895bff954a7aac56b4897d5f8582caded83251256152d5f9b7d55a53eedca The package atg-atgse was found to contain malicious code. Source: ghsa-malware c7041c7bfbb06e2e710b58e8aeff432e4774d756db057975426c046c7ea06339 Any...

Malicious Package

Overview atg-atgse is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

CVE-2025-58428

The TLS4B ATG system's SOAP-based interface is vulnerable due to its accessibility through the web services handler. This vulnerability enables remote attackers with valid credentials to execute system-level commands on the underlying Linux system. This could allow the attacker to achieve remote...

Malicious code in atg-all-in-wonder-player (npm)

The package atg-all-in-wonder-player was found to contain malicious code...

MAL-2025-15003 Malicious code in atg-all-in-wonder-player (npm)

The package atg-all-in-wonder-player was found to contain malicious code...

Malicious code in atg-store-addons (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-4163 Malicious code in atg-store-addons (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-4162 Malicious code in atg-breakpoints (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in atg-breakpoints (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-9432 Malicious code in atg-superagent-retry-delay (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 75f0747e74a5e0a7d519918b8aceef9e8f4f9eaa0ad1854c1954276bb1c5166c The OpenSSF Package Analysis project identified 'atg-superagent-retry-delay' @ 100.100.100 npm as malicious. It is considered malicious because:...

Automated Tank Gauge (ATG) Remote Configuration Disclosure Exploit

In 2015, HD Moore, the creator of Metasploit, published an article disclosing over 5,800 gas station Automated Tank Gauges ATGs which were publicly accessible. Besides monitoring for leakage, these systems are also instrumental in gauging fluid levels, tank temperature, and can alert operators wh...

Automated Tank Gauge (ATG) Remote Configuration Disclosure

!/usr/bin/env python3 import time import socket with open"/tmp/ATGSCAN.txt",'r' as atgfile: for line in atgfile.read.splitlines: try: atgsocket = socket.socketsocket.AFINET, socket.SOCKSTREAM port = 10001 searchstr = 'IN-TANK INVENTORY' msg = str'\x01' + 'I20100' + '\n'.encode'ascii'...

secure.atgtickets.com XSS vulnerability

Open Bug Bounty ID: OBB-558168 Description| Value ---|--- Affected Website:| secure.atgtickets.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CVE-2017-12733

A Missing Authentication for Critical Function issue was discovered in OPW Fuel Management Systems SiteSentinel Integra 100, SiteSentinel Integra 500, and SiteSentinel iSite ATG consoles with the following software versions: older than V175, V175-V189, V191-V195, and V16Q3.1. An attacker may crea...

Veeder-Root Automatic Tank Gauge (ATG) Administrative Client

This module acts as a simplistic administrative client for interfacing with Veeder-Root Automatic Tank Gauges ATGs or other devices speaking the TLS-250 and TLS-350 protocols. This has been tested against GasPot and Conpot, both honeypots meant to simulate ATGs; it has not been tested against...

Automated Gas Tank Gauge Hacks Possible: HD Moore

UPDATE: This story has been updated with commentary from the company that manufactures and sells the vulnerable automated tank guages. The gauges that detect and prevent fuel leaks at more than 5,000 gas stations in the United States are utterly vulnerable to remote attacks, according to new...

PLIB 1.8.5 ssg/ssgParser.cxx Buffer Overflow

No description provided by source. / Exploit Title: Plib + flightgear 3dconvert exploit Date: 08/10/2012 Author: Andres Gomez Software Links: Plib: http://plib.sourceforge.net/ flightgear: http://www.flightgear.org/ 3dconvert: ftp://ftp.ihg.uni-duisburg.de/FlightGear/Win32/old/3dconvert-win32.zip...

PLIB 1.8.5 - 'ssg/ssgParser.cxx' Local Buffer Overflow

/ Exploit Title: Plib + flightgear 3dconvert exploit Date: 08/10/2012 Author: Andres Gomez Software Links: Plib: http://plib.sourceforge.net/ flightgear: http://www.flightgear.org/ 3dconvert: ftp://ftp.ihg.uni-duisburg.de/FlightGear/Win32/old/3dconvert-win32.zip Version: Plib 1.8.5 Tested on:...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2 ATG RUP6 allows remote attackers to affect confidentiality and integrity via unknown vectors...

CVE-2010-0859

Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 11.5.10.2 ATG RUP6 allows remote attackers to affect confidentiality and integrity via unknown vectors...