Scalable Ultrafast Random Bit Generation Using Wideband Chaos-Based Entropy Sources

The exponential growth of data transmission and processing speeds in modern digital infrastructure requires entropy sources capable of producing large volumes of true randomness for information security. Chaotic emissions from semiconductor lasers are attractive in this context because of their...

EUVD-2010-2434

Malware in sbrugna...

EUVD-2021-2598

Malware in sbrugna...

MAL-2025-10972 Malicious code in @zalastax/nolb-comb (npm)

The package @zalastax/nolb-comb was found to contain malicious code...

Malicious code in @zalastax/nolb-comb (npm)

The package @zalastax/nolb-comb was found to contain malicious code...

LeakSearch - Search & Parse Password Leaks

LeakSearch is a simple tool to search and parse plain text passwords using ProxyNova COMB Combination Of Many Breaches over the Internet. You can define a custom proxy and you can also use your own password file, to search using different keywords: such as user, domain or password. In addition, y...

EmploLeaks - An OSINT Tool That Helps Detect Members Of A Company With Leaked Credentials

This is a tool designed for Open Source Intelligence OSINT purposes, which helps to gather information about employees of a company. How it Works The tool starts by searching through LinkedIn to obtain a list of employees of the company. Then, it looks for their social network profiles to find...

EmploLeaks - Finding Leaked Employees Info for the Win

Developed by Faraday security researchers, this cutting-edge tool utilizes the power of OpenSource Intelligence techniques. EmploLeaks extracts valuable insights by scouring various platforms, to compile a comprehensive list of employees associated with a given company and cross-reference these...

Prototype Pollution in comb

All versions of package comb are vulnerable to Prototype Pollution via the deepMerge function...

@questwork/authenticator (>=0.1.0 <=0.1.5), @questwork/qw-service-tools (>=0.0.8 <=0.1.4) +22 more potentially affected by CVE-2021-23561 via comb (>=0.0.6 <=2.0.0)

comb NPM version =0.0.6, =0.1.0, =0.0.8, =0.0.1, =1.0.3, =0.0.1, =0.1.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2 and more Source cves: CVE-2021-23561 Source advisory: OSV:GHSA-VXR4-RXW7-G7V6...

GHSA-VXR4-RXW7-G7V6 Prototype Pollution in comb

All versions of package comb are vulnerable to Prototype Pollution via the deepMerge function...

Prototype Pollution

comb is vulnerable to prototype pollution. The function deepMerge allows an attacker to get control of value of “path” and modify attributes such as proto, constructor and prototype...

CVE-2021-23561

All versions of package comb are vulnerable to Prototype Pollution via the deepMerge function...

CVE-2021-23561

CVE-2021-23561 affects the npm package comb, where the deepMerge() function enables Prototype Pollution. The vulnerability arises from unsafe recursive merge and path-based property assignment, allowing an attacker to modify Object.prototype properties (e.g., proto , constructor, prototype). Docu...

CVE-2021-23561 Prototype Pollution

All versions of package comb are vulnerable to Prototype Pollution via the deepMerge function...

comb 代码问题漏洞

comb is a node framework that provides a one-stop shop for frequently needed utilities. A code issue exists in Comb where the product is susceptible to prototype contamination from the mergeDeep function. The following products and versions are affected:...

@questwork/authenticator (>=0.1.0 <=0.1.5), @questwork/qw-service-tools (>=0.0.8 <=0.1.4) +22 more potentially affected by CVE-2021-23561 via comb (>=0.0.6 <=2.0.0)

comb NPM version =0.0.6, =0.1.0, =0.0.8, =0.0.1, =1.0.3, =0.0.1, =0.1.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2 and more Source cves: CVE-2021-23561 Source advisory: SNYK:JS-COMB-1730083...

Prototype Pollution

Overview comb is a framework for node Affected versions of this package are vulnerable to Prototype Pollution via the deepMerge function. PoC: // PoC.js var deepMerge = require"comb/lib/base/object.js".deepMerge var obj = var maliciouspayload = '"proto":"polluted":"Yes! Its Polluted"';...

Titan FTP Server 'XCRC' and 'COMB' Directory Traversal Vulnerabilities

This host is running Titan FTP Server and is prone to directory traversal vulnerabilities. OpenVAS Vulnerability Test $Id: secpodtitanftpserverdirtravvuln.nasl 5401 2017-02-23 09:46:07Z teissa $ Titan FTP Server 'XCRC' and 'COMB' Directory Traversal Vulnerabilities Authors: Madhuri D Copyright:...

Directory traversal

Directory traversal vulnerability in TitanFTPd in South River Technologies Titan FTP Server 8.10.1125, and probably earlier versions, allows remote authenticated users to read or delete arbitrary files via "..//" sequences in a COMB command...