722 matches found
MAL-2024-12266 Malicious code in evil-select-pkg (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 db8225867ca74c2a2192382dc4abcc5119fb1ac07049412245e3a686524138f8 Package description attempts to pentest/exploit the PyPI web interface. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but als...
Malicious code in evil-select-pkg (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 db8225867ca74c2a2192382dc4abcc5119fb1ac07049412245e3a686524138f8 Package description attempts to pentest/exploit the PyPI web interface. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but als...
MAL-2024-8944 Malicious code in npm-evil-fish (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5422630a80e283b7ae938687b04a988bee70b5c8b137520d4aaca5af1b979c3 The OpenSSF Package Analysis project identified 'npm-evil-fish' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in npm-evil-fish (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5422630a80e283b7ae938687b04a988bee70b5c8b137520d4aaca5af1b979c3 The OpenSSF Package Analysis project identified 'npm-evil-fish' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...
Exploit for Cross-site Scripting in Wondercms
https://sploitus.com/exploit?id=3A833277-4844-5F02-AFEF-5EA6B...
Oracle DB SQL Injection Via SYS.LT.FINDRICSET Evil Cursor Method
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.LT.FINDRICSET Evil Cursor Method', 'Description' = %q This module will escalate an Oracle DB user to DBA by...
Malicious code in evil-pkg1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f3f9795022d3525ac5206d67f60906020987aabf1bf4580b48d7ac7c6429108c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in evil-pkg (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 366920f1b216795839a0a8533db122155f0c839032a67fdd6a33544179749a2c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2025-2959 Malicious code in evil-pkg (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 366920f1b216795839a0a8533db122155f0c839032a67fdd6a33544179749a2c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
Malicious code in evil-pkg2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d1e1a7a65c4f1287f792371642eb66734028aa9dc7ffc50adde9b551e082bdb1 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2025-2961 Malicious code in evil-pkg2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d1e1a7a65c4f1287f792371642eb66734028aa9dc7ffc50adde9b551e082bdb1 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2025-2960 Malicious code in evil-pkg1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f3f9795022d3525ac5206d67f60906020987aabf1bf4580b48d7ac7c6429108c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
CVE-2024-7408
This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...
CVE-2024-7408
This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...
Exploit for Cross-site Scripting in Wondercms
PoC exploit for CVE-2023-41425, a Wonder CMS RCE XSS vulnerabi...
CVE-2024-7408 Information Disclosure Vulnerability in Airveda Air Quality Monitor
This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...
CVE-2024-7408
CVE-2024-7408 affects Airveda Air Quality Monitor PM2.5/PM10. The issue is information disclosure through plaintext transmission in the AP pairing mode, enabling an attacker in proximity to capture Wi‑Fi traffic. This can facilitate an Evil Twin attack on the targeted system. The CVSS metrics ind...
CVE-2024-7408 Information Disclosure Vulnerability in Airveda Air Quality Monitor
This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...
Exploit for Heap-based Buffer Overflow in Microsoft
CVE-2024-38077-EXP 基于伪代码https://sites.google.com/site/zhin...
Malicious code in evil-package (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a6fe9e1f81afbcfb5f8f0d260af0434649c77b11d353d3264c7022e763767d43 --- Category: PENTEST - Packages with high confidence of being created for a pentest. Campaign: TEST-PACKAGES Reasons based on the campaign:...