GHSA-77XJ-RRH3-WX3V `time_calibrator` was removed from crates.io due to malicious code

It was reported timecalibrator contained malicious code, that would try to upload .env files to a server. The malicious crate had only 1 version published at 2026-02-28 and no evidence of actual usage. The crate was removed from crates.io and the user account was locked. There were no crates...

How the Graph Construction Technique Shapes Performance in IoT Botnet Detection

The increasing incidence of IoT-based botnet attacks has driven interest in advanced learning models for detection. Recent efforts have focused on leveraging attention mechanisms to model long-range feature dependencies and Graph Neural Networks GNNs to capture relationships between data instance...

EUVD-2024-35503

Malicious code in bioql PyPI...

CVE-2024-52353 WordPress Christian Science Bible Lesson Subjects plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Gabriel Serafini Christian Science Bible Lesson Subjects christian-science-bible-lesson-subjects allows DOM-Based XSS.This issue affects Christian Science Bible Lesson Subjects: from n/a through =...

CVE-2024-52353

CVE-2024-52353 is a DOM-based XSS in the WordPress plugin Christian Science Bible Lesson Subjects. The Wordfence entry shows the vulnerability as authenticated (Contributor+) stored cross-site scripting affecting the plugin up to version 2.0, with a patch available. Technical details are corrobor...

CVE-2024-52353 WordPress Christian Science Bible Lesson Subjects plugin <= 2.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Gabriel Serafini Christian Science Bible Lesson Subjects christian-science-bible-lesson-subjects allows DOM-Based XSS.This issue affects Christian Science Bible Lesson Subjects: from n/a through =...

MAL-2024-9744 Malicious code in ori-gabriel-poc (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in ori-gabriel-poc (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in ori-gabriel (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-9743 Malicious code in ori-gabriel (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in ori-gabriel-rce-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f71bb03bb69baf10b63677477b19ab39b9793ad35b10850961a6ee291b10c1f The OpenSSF Package Analysis project identified 'ori-gabriel-rce-test' @ 1.0.1 npm as malicious. It is considered malicious because: - The packa...

MAL-2024-9745 Malicious code in ori-gabriel-rce-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f71bb03bb69baf10b63677477b19ab39b9793ad35b10850961a6ee291b10c1f The OpenSSF Package Analysis project identified 'ori-gabriel-rce-test' @ 1.0.1 npm as malicious. It is considered malicious because: - The packa...

Malicious code in ori-gabriel-test2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 97118bb098b3b51630483b77d70977a582c54e3768ff5c54a65435870b3840de The OpenSSF Package Analysis project identified 'ori-gabriel-test2' @ 7.7.9 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9747 Malicious code in ori-gabriel-test2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 97118bb098b3b51630483b77d70977a582c54e3768ff5c54a65435870b3840de The OpenSSF Package Analysis project identified 'ori-gabriel-test2' @ 7.7.9 npm as malicious. It is considered malicious because: - The package...

Malicious code in ori-gabriel-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 80e4a738169f3040e2786d44f744d9646f6ae11d6b59e30d03c4edba106a7c2d The OpenSSF Package Analysis project identified 'ori-gabriel-test' @ 7.7.8 npm as malicious. It is considered malicious because: - The package...

MAL-2024-9746 Malicious code in ori-gabriel-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 80e4a738169f3040e2786d44f744d9646f6ae11d6b59e30d03c4edba106a7c2d The OpenSSF Package Analysis project identified 'ori-gabriel-test' @ 7.7.8 npm as malicious. It is considered malicious because: - The package...

CVE-2024-35745

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Gabriel Somoza / Joseph Fitzgibbons Strategery Migrations allows Path Traversal, File Manipulation.This issue affects Strategery Migrations: from n/a through 1.0...

CVE-2024-35745

CVE-2024-35745 affects Strategery Migrations (WordPress plugin) up to version 1.0. The vulnerability enables unauthenticated arbitrary file deletion via path traversal (as described in the CVE and Red Hat entry). Root cause is improper validation/handling of file paths, allowing deletion/manipula...

CVE-2024-35745 WordPress Strategery Migrations plugin <= 1.0 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Gabriel Somoza / Joseph Fitzgibbons Strategery Migrations allows Path Traversal, File Manipulation.This issue affects Strategery Migrations: from n/a through 1.0...

gabriel-marcel.com Cross Site Scripting vulnerability OBB-3905197

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...