MAL-2025-809 Malicious code in blockly-examples (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in ton-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac83c8d18317fa7c1f2fecc782c419c88d798a4e02d25874898824c47e74f1ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1180 Malicious code in ton-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac83c8d18317fa7c1f2fecc782c419c88d798a4e02d25874898824c47e74f1ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-327 Malicious code in 1password-sdk-exapmles (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 98366c77213b87d7622472828c95aa7590386458d140ad0a0b31a86afde5b6ee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-254 Malicious code in uber-direct-js-sdk-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30ee8294ed2bcf683f478b647f9919d6b45e0651905c29ada14a3ce392168447 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Tracking cloud-fluent threat actors - Part two: Behavioral cloud IOCs

Discover how behavioral cloud IOCs can expose malicious activity as we break down real-world examples to reveal actionable detection techniques...

Exploit for CVE-2024-27292

Docassemblepoc Docassemble任意文件读取漏洞CVE-2024-27292 python D...

OESA-2024-2564 tomcat security update

The Apache Tomcat software is developed in an open and participatory environment and released under the Apache License version 2. The Apache Tomcat project is intended to be a collaboration of the best-of-breed developers from around the world. We invite you to participate in this open developmen...

MAL-2024-11912 Malicious code in focal-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a810e0097be46a2d0ef76ac3c6aa2088c3467e69485c408f22014bc66dd07530 The OpenSSF Package Analysis project identified 'focal-examples' @ 9.9.9 npm as malicious. It is considered malicious because: - The package...

Malicious code in focal-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a810e0097be46a2d0ef76ac3c6aa2088c3467e69485c408f22014bc66dd07530 The OpenSSF Package Analysis project identified 'focal-examples' @ 9.9.9 npm as malicious. It is considered malicious because: - The package...

DEBIAN-CVE-2024-54677

Uncontrolled Resource Consumption vulnerability in the examples web application provided with Apache Tomcat leads to denial of service. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.1, from 10.1.0-M1 through 10.1.33, from 9.0.0.M1 through 9.9.97. The following versions were EOL at...

Exploit for Path Traversal in Grafana

Automated Exploit Tool for Grafana CVE-2021-43798 !Previewi...

Fixed in Apache Tomcat 9.0.98

Important: Remote Code Execution via write enabled Default Servlet. Mitigation for CVE-2024-50379 was incomplete - CVE-2024-56337 The previous mitigation for CVE-2024-50379 was incomplete. In addition to upgrading to 9.0.98 or later, users running Tomcat on a case insensitive file system with the...

Fixed in Apache Tomcat 11.0.2

Important: Remote Code Execution via write enabled Default Servlet. Mitigation for CVE-2024-50379 was incomplete - CVE-2024-56337 The previous mitigation for CVE-2024-50379 was incomplete. In addition to upgrading to 11.0.2 or later, users running Tomcat on a case insensitive file system with the...

Malicious code in qwilr-examples-create-page (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e0bbec32dcccb555fb5667a8f1cb7f4973512ac8acbea5261a4ff7d14a952476 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in openai-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0209fe94e2a98b2966850b302c4c2dda331437ead2871a609a8677cdc85516fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9175 Malicious code in openai-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0209fe94e2a98b2966850b302c4c2dda331437ead2871a609a8677cdc85516fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in redis-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 02766e4613356d0e36f10a314a6c3e8b1b712dc126813ac3beff0958cb22c71a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-9177 Malicious code in redis-examples (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 02766e4613356d0e36f10a314a6c3e8b1b712dc126813ac3beff0958cb22c71a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview redis-examples is a malicious package. This package contains malicious code that collects sensitive information about the victim and sends it to the attacker's remote server. While this package might be attempting to impersonate a valid organization, there is no connection between that...