Malicious code in dependency-confusion-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 229d38e7d2d3105bfcd37f65885ebaebcf9746721aba7bdec84e88810b454ee0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8060 Malicious code in nodejs-docs-samples-vision (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e1cdc3327056c67e82939a16ed3db3bac39a19b9dbcadfe2aabfd9dbaa353635 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8035 Malicious code in glitchverse (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 094e280c6d5677f7322c73e7c7f38c15f88a029102a253aca3fa2842ab7744e0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8029 Malicious code in @digital-experience/test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 26be8e6356ffa856692e9aa6cfa8b488f57d44be07cef5db057a521883825b42 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in eslint-config-react-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fda3631232466ff38fcdeac8d90d36bcfb72f632a3055055d5e0b19ef17b500b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8042 Malicious code in tsconfig-react-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4aff665839335434b8a93a1a8881d423eb7ff5ab92725d898e4db717468a59e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8037 Malicious code in prettier-config-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4241fd6088878cd356569ae38a56d91f4c9f0819334d7fdf2fd40546ea6143e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8038 Malicious code in solana-cctp-contracts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f513aced5931ffb63f949f93cc61dfe8ceae696235caee3f926488e16d73de06 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in system-library-gameanalytics-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7c2f4730ced83dee1092ba6678be557ca2aabeb26a07593f183802984e4a903 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8027 Malicious code in @benasin_2/frontend-logger (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4a339db60313e6c81672ce35a4c91e4a1c202c1a62cb5fff73c5a59c8fc9347 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8041 Malicious code in system-library-gameanalytics-slotanalytics (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a3db50fd5e484287e6f1e20c3a8a092a1e84a70fb8bc2cb1335238363028c766 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-8083

A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this issue is some unknown functionality of the file /php-ocls/classes/Master.php?f=payorder. The manipulation of the argument id leads to sql injection. The attac...

CVE-2024-8084

CVE-2024-8084 affects SourceCodester Online Computer and Laptop Store 1.0. The vulnerability resides in the Setting Handler’s SystemSettings.php?f=update_settings, where the System Name parameter can be manipulated to trigger cross-site scripting. The issue is exploitable remotely and exploits ha...

CVE-2024-8084 SourceCodester Online Computer and Laptop Store Setting SystemSettings.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Computer and Laptop Store 1.0. This affects an unknown part of the file /php-ocls/classes/SystemSettings.php?f=updatesettings of the component Setting Handler. The manipulation of the argument System Name lea...

CVE-2024-8084 SourceCodester Online Computer and Laptop Store Setting SystemSettings.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Computer and Laptop Store 1.0. This affects an unknown part of the file /php-ocls/classes/SystemSettings.php?f=updatesettings of the component Setting Handler. The manipulation of the argument System Name lea...

Online Computer and Laptop Store SQL注入漏洞

Online Computer and Laptop Store is an online computer and laptop store by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Online Computer and Laptop Store version 1.0, which originates from a SQL injection vulnerability in the id parameter of the...

Man certifies his own (fake) death after hacking into registry system using stolen identity

A 39-year-old man has been sentenced to 81 months in jail after hacking governments systems to fake his own death to dodge paying child support. Yes, you read that right. The press release by the US Attorneys Office, Eastern District of Kentucky, paints a detailed picture of what went down. In...

scsi: mpi3mr: Sanitise num_phys

...

CraftOS-PC 2 安全漏洞

CraftOS-PC 2 is a fast, modern, feature-rich ComputerCraft simulator written in C++ by the individual developer JackMacWindows. A security vulnerability exists in CraftOS-PC 2 versions prior to 2.8.3, which stems from the fact that a user can obfuscate ... bypassing an internal check that prevent...

CVE-2024-41332

Incorrect access control in the deletecategory function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories...