EUVD-2025-7136

Malicious code in bioql PyPI...

EUVD-2025-7132

Malicious code in bioql PyPI...

CVE-2025-29412

A cross-site scripting XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

CVE-2025-29411

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file...

CVE-2025-29411

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file...

CVE-2025-29411

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file...

CVE-2025-29412

A cross-site scripting XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

CVE-2025-29412

A cross-site scripting XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

CVE-2025-29412

The CVE-2025-29412 entry identifies an XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0. The issue arises from injected payloads in the Name parameter, enabling arbitrary web scripts or HTML execution. Affected component: iBanking v2.0.0, Client Profile Up...

CVE-2025-29411

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file...

CVE-2025-29411

An arbitrary file upload vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary code via uploading a crafted PHP file...

CVE-2025-29412

A cross-site scripting XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

CVE-2025-29412

A cross-site scripting XSS vulnerability in the Client Profile Update section of Mart Developers iBanking v2.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter...

iBanking 安全漏洞

iBanking is an information system by Martin Mbithi Personal Developer. A security vulnerability exists in iBanking version v2.0.0, which stems from an arbitrary file upload vulnerability in the Client Profile Update section that could lead to the execution of arbitrary code...

iBanking 安全漏洞

iBanking is an information system by Martin Mbithi, an individual developer. A security vulnerability exists in iBanking version v2.0.0, which originates from a cross-site scripting vulnerability in the update section of the client configuration file, which allows an attacker to execute arbitrary...

CVE-2025-29411

CVE-2025-29411 affects Mart Developers iBanking v2.0.0. An arbitrary file upload in the Client Profile Update section enables attackers to upload a crafted PHP file and achieve remote code execution. The CVSS v3.1 base score is 9.8 (Critical) with network attack vector, no privileges required, us...

Malicious code in ibanking-shell (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7804c7704b112de8ffcb7e68e999a0f477e2baa0505178ef60f680b7ef3ee7ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3746 Malicious code in ibanking-shell (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7804c7704b112de8ffcb7e68e999a0f477e2baa0505178ef60f680b7ef3ee7ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malware exploit: Ibanking

Type: Panel Upload Vulnerability Author: Xylitol !-- iBanking panel upload vulnerability -- !-- get.php?p=..&i=.&f=dbconfig.php -- form method="POST" action="http://localhost/smsbot/sendFile.php" enctype="multipart/form-data" FiLEZ: input type="file" name="uploadedfile" /br / input type="hidden"...

iBanking botnet Shell Upload Vulnerability

Exploit for php platform in category web applications FiLEZ: 0day.today 2018-03-28...