12 matches found
Malicious code in @zalastax/nolb-illust-934 (npm)
The package @zalastax/nolb-illust-934 was found to contain malicious code...
MAL-2025-9590 Malicious code in @uxbrand-components/illustration-widget (npm)
The package @uxbrand-components/illustration-widget was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
MAL-2025-12008 Malicious code in @zalastax/nolb-illust-9 (npm)
The package @zalastax/nolb-illust-9 was found to contain malicious code...
On the Voynich Manuscript
Really interesting article on the ancient-manuscript scholars who are applying their techniques to the Voynich Manuscript. No one has been able to understand the writing yet, but there are some new understandings: Davis presented her findings at the medieval-studies conference and published them ...
illustration-hshannover.de Improper Access Control vulnerability OBB-3819121
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
oculus-illustration.ch Cross Site Scripting vulnerability OBB-3485803
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
illustratedwildlife.com Cross Site Scripting vulnerability OBB-2498435
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Exploit for Code Injection in Vmware Spring_Cloud_Gateway
CVE-2022-22947-Spring-Cloud-Gateway-SpelRCE Overview of CVE...
SpiderOak's Warrant Canary Died
BoingBoing has the story. I have never quite trusted the idea of a warrant canary. But here it seems to have worked. Presumably, if SpiderOak wanted to replace the warrant canary with a transparency report, they would have written something explaining their decision. To have it simply disappear i...
garance-illustration.com XSS vulnerability
Vulnerable URL: http://www.garance-illustration.com/index.php?cat=home=%22/%3E%3C/script%3E%3Cscript%3Ealert/OPENBUGBOUNTY/;%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 09.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
Metasploit Example Exploit
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This exploit sample shows how an exploit module could be written to exploit a bug in an arbitrary TCP server. class MetasploitModule 'Sample Exploit', 'Description' = %q...
Joomla Component com_gameserver 1.0 (id) SQL Injection Vulnerability
No description provided by source. , . | | o | | |,---.,---., .,---.,---.,---.,---.,---|,---.,---.| .,---.|/ ---'| || || |,---|| ,---|| | ||---'| | || || \ | ---'---|---|---^---'---^ ---'---' ---' ' ---'---' o Joomla Component comgameserver 1.0 id SQL Injection Vulnerability --== Author ==-- +...