Lucene search
K

4 matches found

Snyk
Snyk
added 2026/04/02 9:0 p.m.4 views

Malicious Package

Overview strapi-plugin-nordica-cms is a malicious package. This package contains malicious code that conceals a command-and-control agent and credential harvester. A malicious actor published a coordinated campaign of thirty-six packages disguised as community Strapi CMS plugins. These packages...

9.8CVSS6AI score
Exploits0References2
Snyk
Snyk
added 2026/04/02 9:0 p.m.6 views

Malicious Package

Overview strapi-plugin-cron is a malicious package. This package contains malicious code that conceals a command-and-control agent and credential harvester. A malicious actor published a coordinated campaign of thirty-six packages disguised as community Strapi CMS plugins. These packages aren't...

9.8CVSS6AI score
Exploits0References2
Snyk
Snyk
added 2026/04/02 9:0 p.m.4 views

Malicious Package

Overview strapi-plugin-logger is a malicious package. This package contains malicious code that conceals a command-and-control agent and credential harvester. A malicious actor published a coordinated campaign of thirty-six packages disguised as community Strapi CMS plugins. These packages aren't...

9.8CVSS6AI score
Exploits0References2
Metasploit
Metasploit
added 2025/09/16 6:53 p.m.1057 views

Obsidian Plugin Persistence

This module searches for Obsidian vaults for a user, and uploads a malicious community plugin to the vault. The vaults must be opened with community plugins enabled NOT restricted mode, but the plugin will be enabled automatically. Tested against Obsidian 1.7.7 on Kali, Ubuntu 22.04, and Windows...

5.9AI score
Exploits0
Rows per page
Query Builder