Malicious code in vite-plugin-css-blend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a47fa75fbd028d1aca89ca790036f760c76d8e486175505ef4a8f59f33e7c76 The package is published as a Vite CSS plugin but exposes no Vite plugin API. Its documented applyGlobalStylespalette, accents export, when called on...

Linksys WRT120N TmUnblock Stack Buffer Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linksys WRT120N tmUnblock Stack Buffer Overflow', 'Description' = %q This module exploits a stack-based buffer overflow vulnerability in the...

SUSE CVE-2016-1613

Multiple use-after-free vulnerabilities in the formfiller implementation in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to improper tracking of the destructi...

@bitacode/apispecmd-ts (>=0.0.1 <=0.1.2), @layer0/node-license-report (>=0.0.0 <=0.0.3) +13 more potentially affected by CVE-2021-23639 via md-to-pdf (>=2.8.2 <=4.1.0)

md-to-pdf NPM version =2.8.2, =0.0.1, =0.0.0, =0.0.2, =0.0.2, =0.7.2, =1.0.1, =0.2.0, =0.1.0, =1.1.0, =0.2.0, =1.5.0, =1.10.0, =1.0.0, =0.0.2, =0.0.10 Source cves: CVE-2021-23639 Source advisory: OSV:GHSA-X949-7CM6-FM6P...

BOOTP Turbo 2.0 - Denial of Service (SEH) Exploit

Exploit Title: BOOTP Turbo 2.0 - Denial of Service SEHPoC Exploit Author: boku Software Vendor: Wierd Solutions Vendor Homepage: https://www.weird-solutions.com Software Link: https://www.weird-solutions.com/download/products/bootptdemoIA32.exe Version: BOOTP Turbo x86 Version 2.0 Tested On:...

Best Free Password Manager Software You Can Download For 2018

When it comes to safeguarding your Internet security, installing an antivirus software or running a Secure Linux OS on your system does not mean you are safe enough from all kinds of cyber-threats. Today majority of Internet users are vulnerable to cyber attacks, not because they aren't using any...

UBUNTU-CVE-2016-1613

Multiple use-after-free vulnerabilities in the formfiller implementation in PDFium, as used in Google Chrome before 48.0.2564.82, allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document, related to improper tracking of the destructi...

Opera 16 Fixes Bugs, Improves HTML5 Performance

Norwegian software company Opera pushed out version 16 of its eponymous Internet browser this week, complete with what it’s calling “tons of bug fixes,” improved performance and a slew of new features and APIs. While the full changelog hasn’t been published yet, Ruarí Ødegaard, a member of Opera’...

Novell ZENworks Configuration Management Preboot Service 0x6c Buffer Overflow

This module exploits a remote buffer overflow in the ZENworks Configuration Management. The vulnerability exists in the Preboot service and can be triggered by sending a specially crafted packet with the opcode 0x6c PROXYCMDGETNEXTSTEP to port 998/TCP. The module has been successfully tested on...

COMRaider Insecure Method

!/usr/bin/perl COMRaider Idefense Labs CreateFolder and Copy Insecure Method Hard Disk Filler Exploit Discovered and Exploited by : Khashayar Fereidani Http://IRCRASH.com & Http://Fereidani.ir  Help : perl comraider.pl Please enter the foldername C:\ircrash\ for example : C:\ircrash\ Please ente...

iDefense COMRaider - ActiveX Control Multiple Insecure Method Vulnerabilities

source: https://www.securityfocus.com/bid/35725/info The iDefense COMRaider ActiveX control is prone to multiple insecure-method vulnerabilities. Successfully exploiting these issues allows remote attackers to create arbitrary directories and copy arbitrary local files. This may lead to a...

CA BrightStor ARCserve Backup r11.5 ActiveX Remote BOF Exploit 0day

No description provided by source. HTML !-- CA BrightStor ARCserve Backup r11.5 AddColumn 0day ActiveX Remote Buffer Overflow Exploit Bug discovered by Krystian Kloskowski h07 [email protected] Tested on: - CA BrightStor ARCserve Backup r11.5 ftp://ftp.ca.com/priv/trial/BABr11/BABLDr115/BABLDr115.zi...

CVE-2002-2172

CVE-2002-2172 affects Informed Designer and Filler 3.05. The issue is that newly allocated disk blocks are not zeroed out as an encrypted file grows, which may allow an attacker to obtain sensitive information. The connected Red Hat entry reiterates the same description. No explicit exploit detai...

CVE-2002-2172

Informed 1 Designer and 2 Filler 3.05 does not zero out newly allocated disk blocks as an encrypted file grows in size, which may allow attackers to obtain sensitive information...

CVE-2002-2172

Informed 1 Designer and 2 Filler 3.05 does not zero out newly allocated disk blocks as an encrypted file grows in size, which may allow attackers to obtain sensitive information...