20 matches found
Exploit for Improper Certificate Validation in Microsoft
CVE-2022-26923 – Certifried Exploit AD CS Abuse Automatisat...
Malicious code in nuilva-dare-ogoadaf (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57deae5406e84cbe012103109d05b087c3dcd884518a3d67acd67809a17a6539 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in zul-ikan42-sluey (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df7719bfaa4ea2753d099d563832b1d3049913dc8e00855ad1ca9cd90e206e2d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-127232 Malicious code in homeless_planarian_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b1083b6be2170b0316bc21aa9e79093c420d3a2b626b5f91388bacd7a412323 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-126265 Malicious code in erwin-oncom13-wekto (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7908c588fbf5dbd20962b9cd5be85f6c16215d36be93aa8d782c99ca4e1b5478 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in bella-serimuka86-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 042d438f4cd8fbfaa1607610870047a6e503992ff1c0269f3bed178357533cc5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in great_ox_replicate_automation (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0fb10416774f962426a75510ea4cf66a7fb7ae2ac45be2bae1a816c327d0bc69 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-91751 Malicious code in vera-tumis71-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d5fb9a3896b111cc29f2799df74bdcef837adbcad5cd14dcc3e71e28cabba461 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in soviet_tiger_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 669b87b2dc1b3c31f334698b46187f2739fb065ee1002e878a412579c0fc2deb This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kurnia-ongol-ongol11-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 58d2f3b654bb8fed6f94820f02db1efa0f44a05af299662a1e87fcb0aec2ae57 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-75170 Malicious code in riana-sambalado45-breki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ead8f50535910e583f15becd0592e45b2559cd344274e3c146ab9e343cd39a35 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-54595 Malicious code in riana-tumis17-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e335e182499f92995cccd3cf117ff49307e165abee72869990faea4dfe66fa0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in kiki-keraktelor36-kyuki (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3337d88d25a4a938d1d950e58f777ce1f4296fb8fe981ea894357b726b95f35b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
AutoLocalPrivilegeEscalation
AutoLocalPrivilegeEscalation An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically This script is created due to Hackademics, there are so much possible exploit for that version of kernel, as a rookie OSCP student, I am not able to fin...
PT-2025-1311 · Cacti · Cacti
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.29 Description: The issue is related to the build rule item filter function in the api automation.php script of the Cacti network monitoring tool, which fails to properly protect the SQL query structure. This can...
Fortinet Fortigate Privilege escalation vulnerability using the automation script feature (FG-IR-20-131)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-20-131 advisory. - An improper access control vulnerability CWE-284 in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 an...
CVE-2023-26205
An improper access control vulnerability CWE-284 in FortiADC automation feature 7.1.0 through 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged attacker to escalate their privileges to superadmin via a specific crafted configuration of fabric...
Fortinet FortiADC 安全漏洞
Fortinet FortiADC is an application delivery controller from Fortinet, Inc. Fortinet FortiADC suffers from an Access Control Error vulnerability that stems from improper access control. An authenticated, low-privileged attacker could exploit the vulnerability to escalate their privileges to...
Exploit for Improper Input Validation in Apache Unomi
CVE-2020-13942 POC + Automation Script Steps S...
Sahi Pro 8.x Cross Site Scripting
Exploit Title: Sahi pro alertdocument.cookie”.start; log“testing stored XSS injection”; $tc1.end; Step 2 : Execute the created script poc.sah using sahi GUI controller . Step 3 : navigate to the web logs console http://:/logs using the browser for the executed script. XSS is triggered...