Malicious Package

Overview galaktika-components is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in galaktika-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b9bbc46888ec54d0f044dbb94a3b9d6dfd27c7279fcfd31387eb82580eaa972c The OpenSSF Package Analysis project identified 'galaktika-components' @ 0.1.2 npm as malicious. It is considered malicious because: - The packa...

MAL-2024-10747 Malicious code in galaktika-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b9bbc46888ec54d0f044dbb94a3b9d6dfd27c7279fcfd31387eb82580eaa972c The OpenSSF Package Analysis project identified 'galaktika-components' @ 0.1.2 npm as malicious. It is considered malicious because: - The packa...

Malicious code in galaktika-components-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 671c7461688fbe5d0af479ac40ecd1b4e4c79918ca524fc0c26608fd8b2dea9a The OpenSSF Package Analysis project identified 'galaktika-components-test' @ 0.1.148 npm as malicious. It is considered malicious because: - Th...

MAL-2024-10741 Malicious code in galaktika-components-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 671c7461688fbe5d0af479ac40ecd1b4e4c79918ca524fc0c26608fd8b2dea9a The OpenSSF Package Analysis project identified 'galaktika-components-test' @ 0.1.148 npm as malicious. It is considered malicious because: - Th...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” allows a hacker to obtain arbitrary files from the server or overwrite arbitrary files with fixed data.

The vulnerability of the GALAXY ERP resource management system is related to architectural weaknesses in the components .res files that have XML file export functionality. Exploiting this vulnerability allows a malicious actor to read or re-write any file on the server by entering the file path...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” allows a hacker to initiate requests for resources on behalf of the server.

The vulnerability of the .res components of the Enterprise Resource Management System “Galaktika ERP” is related to the functionality of importing XML configurations. Exploiting this vulnerability allows a malicious actor to initiate requests to any resource on behalf of the server by performing...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” allows a perpetrator to execute arbitrary codes.

The vulnerability of the “Update Manager” component of the enterprise resource management system Galaktika ERP is related to the lack of protection for transmitted data. Exploiting this vulnerability allows a malicious actor, who operates remotely and has access to the update server, to execute...

The vulnerability of the GALAXY ERP resource management system allows a hacker to replace software updates.

The vulnerability of the Plain FTP protocol used by the “Update Manager” component of the enterprise resource management system Galaktika ERP is related to the lack of protection for transmitted data. Exploiting this vulnerability can allow a malicious actor to gain access to software updates and...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” lies in the fact that it stores user accounting data in an open manner, allowing a malicious actor to access and disclose the accounting information of privileged users.

The vulnerability of the Galaktika ERP resource management system lies in the fact that information related to user account data is stored publicly. This information is privileged administrator-sensitive and used for configuring software. Exploiting this vulnerability could allow a malicious acto...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” relates to insufficient protection of the website structure, allowing attackers to execute arbitrary JavaScript code in the browser of the connected client.

The vulnerability of the component that allows sending messages to connected users in the enterprise resource management system Galaktika ERP is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” lies in the lack of protection for transmitted data using DCOM technology. This allows attackers to disclose confidential information.

The vulnerability of the GALAXY ERP resource management system is related to the lack of protection for transmitted data using the DCOM technology. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by analyzing network traffic...

The vulnerability of the remote procedure call handler “arpc_Span” in the atlcore_.dll library of the resource management system of the Galaktika ERP system allows a malicious actor to read data from the memory of the server process.

The vulnerability of the process handler for remote procedure calls in the “arpcSpan” module of the atlcore.dll library of the resource management system of the Galaktika ERP system is related to the lack of validation for the correctness of received requests. Exploiting this vulnerability allows...

The vulnerability of the galsrv.exe process in the Enterprise Resource Management System “Galaktika ERP” allows a attacker to cause a service failure.

The vulnerability of the galsrv.exe process in the Enterprise Resource Management System “Galaktika ERP” is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause service failures for DCOM-based technologies by quickly sending specially crafted...

The vulnerability of the atlcore_.dll library in the enterprise resource management system Galaktika ERP allows a hacker to execute arbitrary code.

The vulnerability of the atlcore.dll library in the enterprise resource management system Galaktika ERP is related to architectural weaknesses in the processing components that handle remote procedure calls. This means that when addresses are transferred between the client and the server, it is...

The vulnerability of the Enterprise Resource Management System “Galaktika ERP” is related to deficiencies in the implementation of the browser interaction protocol and the IIS service, allowing a hacker to execute arbitrary code.

The vulnerability of the GALAXY ERP resource management system is related to deficiencies in the implementation of the browser interaction protocol and the IIS service of GALAXY ERP. Exploiting this vulnerability allows an attacker to execute arbitrary JavaScript code in the client browser when t...