MAL-2023-8358 Malicious code in aws-consoler2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx b37bd86b6f9bda9d03029c9d2fa09561b2b43cda7c3fddda1389c8e193c4a938 Malicious Typosquatting packages campaign targeting developers, steals cloud service credentials Source: google-open-source-security...

MAL-2023-8351 Malicious code in aliababcloud-tea-openapi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 644686188e6f43d2dc595074d7644cba060e6a91b8de18713f4b551a76a6c3b7 Malicious Typosquatting packages campaign targeting developers, steals cloud service credentials Source: google-open-source-security...

[SECURITY] Fedora 38 Update: python3.9-3.9.18-1.fc38

Python 3.9 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, see other distributions that support it, such as CentOS or RHEL or older Fedo...

[SECURITY] Fedora 38 Update: python3.8-3.8.18-1.fc38

Python 3.8 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.8, see other distributions that support it, such as an older Fedora release...

CVE-2023-25042

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Liam Gladdy Storm Consultancy oAuth Twitter Feed for Developers plugin = 2.3.0 versions...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Liam Gladdy Storm Consultancy oAuth Twitter Feed for Developers plugin = 2.3.0 versions...

CVE-2023-25042

CVE-2023-25042 : Stored XSS in the oAuth Twitter Feed for Developers WordPress plugin (

Fedora: Security Advisory for python3.9 (FEDORA-2023-63811dd3b4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The Best FPS Games on Android In 2023: Popular by Demand

By Owais Sultan FPS games on Android have become trendy thanks to the strong smartphone CPU power and graphics from game developers. This is a post from HackRead.com Read the original post: The Best FPS Games on Android In 2023: Popular by Demand...

[SECURITY] Fedora 37 Update: python3.8-3.8.18-1.fc37

Python 3.8 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.8, see other distributions that support it, such as an older Fedora release...

[SECURITY] Fedora 37 Update: python3.9-3.9.18-1.fc37

Python 3.9 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, see other distributions that support it, such as CentOS or RHEL or older Fedo...

RLSA-2023:4520 Moderate: python-requests security update

The python-requests package contains a library designed to make HTTP requests easy for developers. Security Fixes: python-requests: Unintended leak of Proxy-Authorization header CVE-2023-32681 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

MAL-2023-7930 Malicious code in bspin.mobilecasino (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 65f32001f04a5f4b6e32fe438de1f89d70b3873bd38c8eac28761d78900b0ce0 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Malicious code in casino.web (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx feffdfd456f40706d2380c15768e0a8e7449f6c5a2c60d257ef67d5f84d5b6ac Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Over a Dozen Malicious npm Packages Target Roblox Game Developers

More than a dozen malicious packages have been discovered on the npm package repository since the start of August 2023 with capabilities to deploy an open-source information stealer called Luna Token Grabber on systems belonging to Roblox developers. The ongoing campaign, first detected on August...

MAL-2023-8036 Malicious code in sso-map (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ec3637a741345c5082ec0b969e5d295b30baf6cc1647f0f684951624ee0ba64b Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Malicious code in docs-public-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ef1db73ad9c5c4da2dd3bded796ac7c4f660ab81ff6fd5cd77f0452265d05d6f Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

MAL-2023-8039 Malicious code in vision-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 22b046ac73ecbc50209ffe4bb757a9736adafeb2a51ad9123c0d8a3902374246 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

Butterfly Button 安全漏洞

Butterfly Button is an application by the individual developers of TheButterflySDK who are actively involved in the fight against domestic violence. Butterfly Button suffers from a security vulnerability that stems from the presence of unauthorized behavior that can lead to the disclosure of...

MAL-2023-8026 Malicious code in docs-public-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ef1db73ad9c5c4da2dd3bded796ac7c4f660ab81ff6fd5cd77f0452265d05d6f Malicious packages campaign since 2021 targeting developers, steals source code and secrets...