Malicious Package

Overview pt-sc-demo-app is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in pt-sc-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bb315a7617ec23d04aeb4d4518c1539efbeef21894d42401af06f0ec36fdb6 The package pt-sc-demo-app was found to contain malicious code. Source: ghsa-malware 755b0ca70d35b05cdaa098b0bd7a331c5f40f35f8d5bb0dcf56333ce7acce6e0...

MAL-2026-2567 Malicious code in pt-sc-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bb315a7617ec23d04aeb4d4518c1539efbeef21894d42401af06f0ec36fdb6 The package pt-sc-demo-app was found to contain malicious code. Source: ghsa-malware 755b0ca70d35b05cdaa098b0bd7a331c5f40f35f8d5bb0dcf56333ce7acce6e0...

MAL-2025-1559 Malicious code in react-native-wallet-sdk-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca22a1a9bdc58e35b912072adf9e4737394ce3c10cbad067352953e093610bc3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

org.eclipse.jetty.documentation:jetty-documentation (>=10.0.10 <=10.0.15), org.eclipse.jetty.http3:http3-client (>=10.0.10 <=10.0.15) +6 more potentially affected by CVE-2023-36478 via org.eclipse.jetty.http3:http3-qpack (>=10.0.10 <=10.0.15)

org.eclipse.jetty.http3:http3-qpack MAVEN version =10.0.10, =10.0.10, =10.0.10, =10.0.10, =10.0.10, =10.0.10, =10.0.10, =10.0.10, =5.26.1, =5.27.0 Source cves: CVE-2023-36478 Source advisory: OSV:GHSA-WGH7-54F2-X98R...

MAL-2023-743 Malicious code in redox-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 79098325aa80c4b943aebc29d3857ca921d555eda9dbab3ac40c4388c132ab69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in redox-demo-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 79098325aa80c4b943aebc29d3857ca921d555eda9dbab3ac40c4388c132ab69 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-1272 Malicious code in proteus-demo-app-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 14233d3bcebc4fe93545aca56d7d71ce365fcff59f4bf288232269a8e1669df6 The OpenSSF Package Analysis project identified 'proteus-demo-app-server' @ 10.0.1 npm as malicious. It is considered malicious because: - The...

Malicious code in proteus-demo-app-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 14233d3bcebc4fe93545aca56d7d71ce365fcff59f4bf288232269a8e1669df6 The OpenSSF Package Analysis project identified 'proteus-demo-app-server' @ 10.0.1 npm as malicious. It is considered malicious because: - The...

Exploit for Use After Free in Google Android

Bad Spin: Android Binder LPE Author: Moshe Kol Privilege esc...

SUSE CVE-2014-9205

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

MAL-2022-6099 Malicious code in shopify-demo-app-node-react (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ddfa5d5862afe8bcbeb9cdfbc95e6ed44cb476847be2731c8f2863cf7e723cfa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Exploit for Improper Handling of Exceptional Conditions in Sockjs_Project Sockjs

CVE-2020-7693: Meteor A demo Meteor app running the vuln...

Simplify - Generic Android Deobfuscator

Simplify virtually executes an app to understand its behavior and then tries to optimize the code so that it behaves identically but is easier for a human to understand. Each optimization type is simple and generic, so it doesn't matter what the specific type of obfuscation is used. Before and...

CVE-2019-0275

SAML 1.1 SSO Demo Application in SAP NetWeaver Java Application Server J2EE-APPS, versions 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40 and 7.50, does not sufficiently encode user-controlled inputs, which results in cross-site scripting XSS vulnerability...

Shopify: Stored XSS on demo app link

Hi, I found stored XSS in apps.shopify.com in the DEMO URL of the apps you create. POC 1. go to your partner account and create a new app 2. go to DEMO link in https://apps.shopify.com/services/appsubmissions/edit of your app put the payload you see below: F374863 and when pressing on preview...