Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts

Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa by employing various fraudulent Facebook accounts impersonating politicians, public figures, and trusted organizations. "These accounts promoted fake offers, including...

INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator

An INTERPOL-led operation last month resulted in the disruption of Sniper Dz , a decade-long phishing-as-a-service PhaaS platform, Group-IB said Thursday. The effort, codenamed Operation Ramz, took place between October 2025 and February 2026, and saw authorities from 13 countries in the Middle...

EUVD-2010-1126

Malware in sbrugna...

EUVD-2005-1876

Malware in sbrugna...

Malicious code in h4x0r-dz-test (npm)

The package h4x0r-dz-test was found to contain malicious code...

MAL-2025-22086 Malicious code in h4x0r-dz-test (npm)

The package h4x0r-dz-test was found to contain malicious code...

MAL-2024-12178 Malicious code in @dz-lib/dz-cli (npm)

This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec9421e5d1892420fe8194f8361f8c856ef3b31d6996e2554d840fc850e59a1e Any computer that has this package installed or...

Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials

More than 140,000 phishing websites have been found linked to a phishing-as-a-service PhaaS platform named Sniper Dz over the past year, indicating that it's being used by a large number of cybercriminals to conduct credential theft. "For prospective phishers, Sniper Dz offers an online admin pan...

promoteur.angem.dz Cross Site Scripting vulnerability OBB-3939625

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ats-dz.com Cross Site Scripting vulnerability OBB-2320536

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

vegastore.dz Cross Site Scripting vulnerability OBB-2148210

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Pro-ISIS group hacks Ohio Governor’ site with anti-Trump message

By Waqas Team System DZ, a pro-ISIS Daesh hacking group from Algeria is back in the news. This time the group has targeted the government of United States and defaced several Ohio State websites including the official website of Governor John Kasich. The hackers left a deface page along with a...

halbjahresfinanzbericht.dzbank.de XSS vulnerability

Open Bug Bounty ID: OBB-206027 Description| Value ---|--- Affected Website:| halbjahresfinanzbericht.dzbank.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6...

C.COM Events CMS 0.1.02 SQL Injection / Authentication Bypass

======================================================================== | Title : C.COM 0.1.02 Events CMS authentication bypass vulnerability | Author : indoushka | email : [email protected] | Tested on: windows 8.1 Français V.Pro | Vendor : http://www.congresalgerie.com/...

WordPress WooCommerce 2.4.12 PHP Code Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : http://0day.today 0 1 + Support e-mail :...

Syria2u You Shop 1.0 Cross Site Request Forgery / Cross Site Scripting

| Title : Syria2u You Shop v1.0 Mullti Vulnerability | Author : indoushka | email : [email protected] | Dork : سكربت يوشــوب للتسوق عبر الانترنت , قم باختيار المدينة ثم تمتع بالتسوق في مدينتك من أي مكان | Tested on: win8.1 Fr V.Pro 15:39 23/05/2015 | Bug : Mullti | Download :...

Hive 2.0 RC2 XSS / Code Execution / SQL Injection

| Title : Hive v2.0 RC2 Multi Vulnerability | Author : indoushka | email : [email protected] | Dork : "Powered by DigitalHive" | Tested on: windows 8.1 Français V.Pro | Bug : Stop Script | Download : http:///www.digitalhive.com ======================================= Stop SCript working :...

QuickTalk 1.5 Password Hash Disclosure

| Title : QuickTalk 1.5 Reinstall Script Vulnerability | Author : indoushka | email : [email protected] | Dork : powered by QT-cute | Tested on: windows 8.1 Français V.Pro | Bug : Reinstall Script | Download : http://www.scriptmafia.org ======================================= 1 -...

WordPress Plugin dzs-zoomsounds 2.0 - Arbitrary File Upload

Exploit Title: WordPress dzs-zoomsounds Plugins Remote File Upload Vulnerability Vendor : http://digitalzoomstudio.net/docs/wpzoomsounds/ Author: bl4ck-dz Date: 28/05/2015 Infected File: upload.php Category: webapps Google dork:inurl:/wp-content/plugins/dzs-zoomsounds/ Tested on : Linux | Windows...

WordPress Plugin MiwoFTP 1.0.5 - Arbitrary File Download (2)

WordPress Plugin MiwoFTP 1.0.5 - Arbitrary File Download 2 Exploit Title : WordPress MiwoFTP Plugin 1.0.5 = Arbitrary File Download Exploit Author : Dadou Dz Software Link : Premium Dork Google: inurl:commiwoftp Affected version: 1.0.5 Vendor Homepage:...