EUVD-2009-0858

Malware in sbrugna...

EUVD-2005-1642

Malware in sbrugna...

CVE-2021-21431

sopel-channelmgnt is a channelmgnt plugin for sopel. In versions prior to 2.0.1, on some IRC servers, restrictions around the removal of the bot using the kick/kickban command could be bypassed when kicking multiple users at once. We also believe it may have been possible to remove users from oth...

CVE-2022-39203

matrix-appservice-irc is an open source Node.js IRC bridge for Matrix. Attackers can specify a specific string of characters, which would confuse the bridge into combining an attacker-owned channel and an existing channel, allowing them to grant themselves permissions in the channel. The...

CVE-2024-32000 Truncated content of messages can be leaked from matrix-appservice-irc

matrix-appservice-irc is a Node.js IRC bridge for the Matrix messaging protocol. matrix-appservice-irc before version 2.0.0 can be exploited to leak the truncated body of a message if a malicious user sends a Matrix reply to an event ID they don't have access to. As a precondition to the attack,...

GHSA-WM4W-7H2Q-3PF7 Matrix IRC Bridge truncated content of messages can be leaked

Impact The matrix-appservice-irc before version 2.0.0 can be exploited to leak the truncated body of a message if a malicious user sends a Matrix reply to an event ID they don't have access to. As a precondition to the attack, the malicious user needs to know the event ID of the message they want...

PT-2024-24351 · Unknown · Matrix-Appservice-Irc

Name of the Vulnerable Software and Affected Versions: matrix-appservice-irc versions prior to 2.0.0 Description: The issue allows a malicious user to leak the truncated body of a message if they send a Matrix reply to an event ID they don't have access to. The malicious user needs to know the...

SUSE CVE-2020-8955

ircmodechannelupdate in plugins/irc/irc-mode.c in WeeChat through 2.7 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a malformed IRC message 324 channel mode...

Potential API key leak

If a user is actively blackholing the location or weather APIs, or those APIs become otherwise unavailable, it is possible for the API keys to get leaked to the active IRC channel. This is patched in v1.2.4...

GHSA-63RQ-P8FP-524Q Potential API key leak

If a user is actively blackholing the location or weather APIs, or those APIs become otherwise unavailable, it is possible for the API keys to get leaked to the active IRC channel. This is patched in v1.2.4...

Alleged Member of Neo-Nazi Swatting Group Charged

Federal investigators on Friday arrested a Virginia man accused of being part of a neo-Nazi group that targeted hundreds of people in "swatting" attacks, wherein fake bomb threats, hostage situations and other violent scenarios were phoned in to police as part of a scheme to trick them into...

Neo-Nazi SWATters Target Dozens of Journalists

Nearly three dozen journalists at a broad range of major publications have been targeted by a far-right group that maintains a Deep Web database listing the personal information of people who threaten their views. This group specializes in encouraging others to harass those targeted by their ire,...

Exitmap - A Fast and Modular Scanner for TOR Exit Relays

Exitmap is a fast and modular Python-based scanner for Tor exit relays. Exitmap modules implement tasks that are run over a subset of all exit relays. If you have a background in functional programming, think of exitmap as a map interface for Tor exit relays: Modules can perform any TCP-based...

Tails 1.4 - The Amnesic Incognito Live System

Tails is a live operating system, that you can start on almost any computer from a DVD, USB stick, or SD card. It aims at preserving your privacy and anonymity , and helps you to: use the Internet anonymously and circumvent censorship ; all connections to the Internet are forced to go through the...

Solar Empire <= 2.9.1.1 Blind SQL Injection / Hash Retrieve Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo ------------------------------------------------------------------------ Solar Empire = 2.9.1.1 Blind SQL Injection / Hash Retrieve Exploit by BlackHawk [email protected] http://itablackhawk.altervista.org Thanks to...

Reuters Editor Indicted for Helping Hackers Break Into Tribune Co.

A Reuters social media editor on Thursday was charged with helping hackers break into the Tribune Co.’s network shortly after he was fired from a Sacramento television station in Fall 2010. A U.S. Eastern District grand jury in Sacramento handed down a three-count indictment against Matthew Keys,...

Reuters Editor Indicted for Allegedly Helping Hackers Break Into Tribune Co.

UPDATE — One of Matthew Keys’ lawyers told The Huffington Post on Friday that his client was working as an “undercover” journalist when he engaged members of Anonymous in an IRC channel offering login credentials for Tribune Co. servers. Keys, 26, of Secaucas, N.J., was suspended with pay from...

Anonymous Press Release for Journalists !

Anonymous Press Release for Journalists ! Today Anonymous Hackers Release a new Press Note for all those Journalists, who writing a story, and have come to their website to do research, or pull a quote. AnonNews uses an open-posting concept. Anyone can post to the site, and moderators will approv...

Cross site scripting

Cross-site scripting XSS vulnerability in phpDenora before 1.2.3 allows remote attackers to inject arbitrary web script or HTML via an IRC channel name. NOTE: some of these details are obtained from third party information...

CVE-2009-0861

The CVE-2009-0861 issue affects phpDenora prior to 1.2.3, where an XSS vulnerability allows remote attackers to inject arbitrary web script or HTML via an IRC channel name. The root cause is a cross-site scripting flaw in handling channel names; impact is web scripting execution on affected deplo...