PT-2025-37461

Name of the Vulnerable Software and Affected Versions: Campcodes Computer Sales and Inventory System version 1.0 Description: A security flaw exists in Campcodes Computer Sales and Inventory System 1.0. The flaw is due to SQL injection in an unknown function of the file /pages/cust edit1.php...

PT-2025-37462

Name of the Vulnerable Software and Affected Versions: Campcodes Computer Sales and Inventory System version 1.0 Description: A weakness exists in Campcodes Computer Sales and Inventory System that allows for SQL injection. The issue is located in an unknown function of the file /pages/sup...

CampCodes Computer Sales and Inventory System SQL注入漏洞

CampCodes Computer Sales and Inventory System is a computerized sales and inventory system from CampCodes Philippines. CampCodes Computer Sales and Inventory System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Username in the file...

CampCodes Computer Sales and Inventory System SQL注入漏洞

CampCodes Computer Sales and Inventory System is a computerized sales and inventory system from CampCodes Philippines, Inc. CampCodes Computer Sales and Inventory System version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter ID in the file...

Malicious code in graphchain (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0f74a555cfba6dedc51a937d8cf8c843437538581dea703284d1e872317263f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in func-analysis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 183bee92d103b0ab1b31800264af1d8c52406e47e7474caee592609e736c1f1e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in react-dropzone-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1cfc9e996c0ff6970713abc0d1870a3982db5ed09547644a140c8160a8a393d1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in mongose-ci (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1880a71882771a0b6b447fc3c6c5990ae665d189d01f143b84684d99c0015a63 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47075 Malicious code in lovable-ci (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 383c94c307a9e3918b3e8a1296016307e7d4379f743893becd41721604736176 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47078 Malicious code in mongose-ci (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1880a71882771a0b6b447fc3c6c5990ae665d189d01f143b84684d99c0015a63 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-47031 Malicious code in @jsonjoy-com/base64 (npm)

The package @jsonjoy-com/base64 was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7da3501193ea6192ce6e4a5ea194eb4cfd31e27c85d274023f53ef6c5efde39a Any computer that has this package installed or running should be considered fully...

MAL-2025-47081 Malicious code in publicrepouixxe (npm)

The package publicrepouixxe was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d65248ca389c569426d0971808eab156c6812f4652e1a2a2c124f6e31cfb0da5 Any computer that has this package installed or running should be considered fully...

MAL-2025-47045 Malicious code in @self-sell/guards (npm)

The package @self-sell/guards was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 594bf67cf504a8b4b9f076c7913f69f5a9b3f0677a7528de143d2b247cf3bff7 Any computer that has this package installed or running should be considered fully...

Malicious code in @self-sell/components (npm)

The package @self-sell/components was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware aeb15f4ae1c1a830e2fdc21bd8a903fe2e14978eb9952f1e5b3f98f0ca7f353f Any computer that has this package installed or running should be considered fully...

Malicious code in @team-event/models (npm)

The package @team-event/models was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6769b5703bfb1b74cb1db2c7bf3e87a4abfcc35e4e3fd588c284080cb96583e2 Any computer that has this package installed or running should be considered fully...

MAL-2025-47047 Malicious code in @self-sell/store (npm)

The package @self-sell/store was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a25554db33ac217aa1afe6e461f5ec9429746b8c3071523cbea2987e8cdc04e Any computer that has this package installed or running should be considered fully...

Malicious code in @liquid-web/services (npm)

The package @liquid-web/services was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a793462c570f450eeff1a98416d2df40454d98c04a1a28a4c230f7e55dca690d Any computer that has this package installed or running should be considered fully...

MAL-2025-47035 Malicious code in @liquid-web/guards (npm)

The package @liquid-web/guards was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff39fb3d64f126121b204db1daa7ccf8738a1cc5d70406735a1a9fab3e983691 Any computer that has this package installed or running should be considered fully...

[Extended] Ethics in Computer Security Research: a Data-Driven Assessment of the Past, the Present, and the Possible Future

Ethical questions are discussed regularly in computer security. Still, researchers in computer security lack clear guidance on how to make, document, and assess ethical decisions in research when what is morally right or acceptable is not clear-cut. In this work, we give an overview of the...

MAL-2025-47013 Malicious code in arjvg (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1cd64f189589f89a129472b58fe6cdad30ec47b3cbbefc805f31d335ed8cac98 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...