921 matches found
SolarWinds Kiwi Syslog NG < 1.3.1 Sensitive Information Disclosure (CVE-2024-45718)
According to its self-reported version, the SolarWinds Kiwi Syslog NG installation on the remote host is version 1.3 or earlier. It is, therefore, affected by a cleartext storage of sensitive information vulnerability. Sensitive data could be exposed to non-privileged users in a configuration fil...
CVE-2023-25156
Kiwi TCMS, an open source test management system, does not impose rate limits in versions prior to 12.0. This makes it easier to attempt brute-force attacks against the login page. Users should upgrade to v12.0 or later to receive a patch. As a workaround, users may install and configure a...
Malicious code in rtcplogin (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2f986d2da01fbdba339f3d073a84dd5c57ba0aa19113574702160654f70f0620 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191858 Malicious code in rtcplogin (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2f986d2da01fbdba339f3d073a84dd5c57ba0aa19113574702160654f70f0620 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191859 Malicious code in rtcpstream (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 aa2920b4ae77a6e47bbf9ac8163f8d9a30d62966097d34989a36103a76178558 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191837 Malicious code in pyrtp (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f77b4d5bf456d6805b724bbedc6baa9f7fb3cc95e6ab6aace6861bfcd56aec1f Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
Malicious code in rtcpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 75bd7b21b8b27920b63ff14b07b761f57e72da9866682e4e49bd569e660215fd Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191860 Malicious code in rtcpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 75bd7b21b8b27920b63ff14b07b761f57e72da9866682e4e49bd569e660215fd Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191682 Malicious code in aounitaounit2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 17a6f267b170cfb56ec403ff0364780d8adb80064476daffdded59f701b8b154 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191700 Malicious code in chicopute (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d495090103e9ff8ca138e9ad2b40556ce900f92d07ac058463eb58f42edacc85 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191794 Malicious code in mongland (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a003c7277ab04d5aec30eaa72b0f28b25c7534e6b036c381142300b3ac0bde9f Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
MAL-2025-191940 Malicious code in zakuchienne (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6cab2f6ce1c1eec52747b1f7057550b9b35d3c4f6d8c04b51e37afd47c1e5625 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
Malicious code in zakuchienne (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6cab2f6ce1c1eec52747b1f7057550b9b35d3c4f6d8c04b51e37afd47c1e5625 Importing the module starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-11-mescouille...
EUVD-2025-117201
Malicious code in nursing-amaranth-kiwi npm...
MAL-2025-138719 Malicious code in favourite-olive-kiwi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 43ee55b0595e776f8d9225a44a4c603c623af94b0d72d54632ef8ada5a0b01ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-117383
Malicious code in favourite-olive-kiwi npm...
EUVD-2025-99311
Malicious code in electronickiwiz3n npm...
EUVD-2025-98470
Malicious code in gleamingkiwiz3n npm...
EUVD-2025-99089
Malicious code in experiencedkiwiz3n npm...
EUVD-2025-98258
Malicious code in happykiwiz3n npm...