30 matches found
Black Cat Behind SEO Poisoning Malware Campaign Targeting Popular Software Searches
A cybercrime gang known as Black Cat has been attributed to a search engine optimization SEO poisoning campaign that employs fraudulent sites advertising popular software to trick users into downloading a backdoor capable of stealing sensitive data. According to a report published by the National...
Malicious code in tight-black-cat (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 18471a5119144d36542a2c292eea04960333df2d89ff33aeb3c67a718c3bacbf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-51514
Malicious code in tight-black-cat npm...
EUVD-2023-48402
Malicious code in bioql PyPI...
EUVD-2023-48401
Malicious code in bioql PyPI...
CVE-2023-44043
A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...
CVE-2023-44042
A stored cross-site scripting XSS vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter...
CVE-2023-44043
A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...
CVE-2023-44042
A stored cross-site scripting XSS vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter...
CVE-2023-44043
A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...
CVE-2023-44042
A stored cross-site scripting XSS vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter...
Cross site scripting
A stored cross-site scripting XSS vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter...
Cross site scripting
A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...
PT-2023-29080 · Unknown · Blackcat Cms
Name of the Vulnerable Software and Affected Versions: Black Cat CMS version 1.4.1 Description: A cross-site scripting XSS vulnerability exists in Black Cat CMS, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload. This issue is present in two locations: the...
CVE-2023-44043
A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...
CVE-2023-44042
CVE-2023-44042 is a stored XSS vulnerability impacting Black Cat CMS 1.4.1, caused by injection into the Website header parameter in /settings/index.php. The available documents describe arbitrary web-script execution as the consequence but do not provide exploit details, affected versions beyond...
CVE-2023-44043
A reflected cross-site scripting XSS vulnerability in /install/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website title parameter...
CVE-2023-44042
A stored cross-site scripting XSS vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter...
CVE-2023-44042
A stored cross-site scripting XSS vulnerability in /settings/index.php of Black Cat CMS 1.4.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Website header parameter...
CVE-2023-44043
CVE-2023-44043 affects Black Cat CMS version 1.4.1. The vulnerability is a reflected cross-site scripting (XSS) in the file "/install/index.php" triggered by crafting a payload in the Website title parameter. The impact, as described in the provided sources, is execution of arbitrary web scripts ...