MAL-2024-8973 Malicious code in quickstart-calls-chat-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 66bc97e10c5b859cfaa1494796b4d2bb1741fa0062acbc4521af9369722b0c05 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8971 Malicious code in design-system-migrations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 62e513e47a0b14012788a2eecf7f9518d5e4957fcaa0539897fe7def5201d214 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in com.sendbird.chat (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4ab38916865b3515a3b2abac6563461d11ff5bbd7ccf48a1c05fddb8547ca28 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in cktool.target.nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7bb040f385e470a714f5c768de33070b7886ae03cb851e1ecb8812b15e94d46 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in design-system-migrations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 62e513e47a0b14012788a2eecf7f9518d5e4957fcaa0539897fe7def5201d214 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8970 Malicious code in design-system-intranet-header-workspace (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 92014e7f1376852bd6f176fc1cefd54ea673d7e95e89db2ec6b1a960e2fb9021 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8976 Malicious code in uikit-app-promotions-sample (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d19072ff8c8ab1bd3da76aae8b83610fb37811142076666d675f5a7e2fbae6f7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8972 Malicious code in internet-header (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3243e7356e7c50b76a5b743f32d50335abaa4cd8e8a308529d9fd2883206d263 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8968 Malicious code in com.sendbird.chat (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4ab38916865b3515a3b2abac6563461d11ff5bbd7ccf48a1c05fddb8547ca28 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8967 Malicious code in cktool.target.nodejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7bb040f385e470a714f5c768de33070b7886ae03cb851e1ecb8812b15e94d46 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-9142

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

Malicious code in test-object-model (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19a8444231c11ecbd30418a30d5b3805f87015c6ca2683784be6685ef4c77c25 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Olgu Computer Systems e-Belediye 安全漏洞

Olgu Computer Systems e-Belediye is an application from Olgu Computer Systems. A security vulnerability exists in Olgu Computer Systems e-Belediye prior to version 2.0.642, which arises from incorrect privilege assignment of externally controlled filenames or paths, and allows manipulation of Web...

CVE-2024-9142

CVE-2024-9142 affects Olgu Computer Systems’ e-Belediye prior to version 2.0.642. The root cause is incorrect permission assignment for a critical resource, enabling external control of file name or path and allowing manipulation of web input to file system calls. According to connected sources, ...

CVE-2024-9142 Local File Inclusion (LFI) in Olgu Computer Systems' e-Belediye

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

CVE-2024-9142 Local File Inclusion (LFI) in Olgu Computer Systems' e-Belediye

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

MAL-2024-8951 Malicious code in express-request-ip (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d640e010ac10316c3c6f0419c77b933e2695ff224fd189773e30020995ab3895 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8925 Malicious code in basecontext (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05b11d319e305490690fe36a31597a9a983ce7ea769f5123feb35cf24b6ac096 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8926 Malicious code in pring-payment-demo-backend (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3eed32902e1265a8b45d6189699734582790383eb848542f28396763e05ca31 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MegaSys Computer Technologies Telenium Online Web Application (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/low attack complexity Vendor : MegaSys Computer Technologies Equipment : Telenium Online Web Application Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could...