24 matches found
Malicious Package
Overview spr-i18n-labels is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious Package
Overview upstartadmindashboard- is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packag...
MAL-2025-191758 Malicious code in hexdecnet (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4ca5c3aa5b553fffaca36241e0e3a6144c9b661b9e0cb77fd93ae34fc6b1ed7e Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
MAL-2025-20538 Malicious code in file-alb-um-zip-new-mp3-38030-too-legit-to-quit-0d58y-hddhtz (npm)
The package file-alb-um-zip-new-mp3-38030-too-legit-to-quit-0d58y-hddhtz was found to contain malicious code...
CVE-2024-30250
Astro-Shield is an integration to enhance website security with SubResource Integrity hashes, Content-Security-Policy headers, and other techniques. Versions from 1.2.0 to 1.3.1 of Astro-Shield allow bypass to the allow-lists for cross-origin resources by introducing valid integrity attributes to...
Microsoft: Chinese APT Flax Typhoon uses legit tools for cyber espionage
By Deeba Ahmed Researchers believe that this time instead of cyber espionage, Chinese threat actors may have opted for more complex information ops. This is a post from HackRead.com Read the original post: Microsoft: Chinese APT Flax Typhoon uses legit tools for cyber espionage...
Typosquatting: Legit Abquery Package Duped with Malicious Aabquerys
By Deeba Ahmed Aabquerys use the typosquatting technique to encourage downloading malicious components, as it has been cleverly named to make it sound like the legitimate NPM module Abquery. This is a post from HackRead.com Read the original post: Typosquatting: Legit Abquery Package Duped with...
Zombinder on Dark Web Lets Hackers Add Malware to Legit Apps
By Deeba Ahmed At the moment, Zombinder is focusing entirely on Android apps but the service operators are offering Windows apps binding services. This is a post from HackRead.com Read the original post: Zombinder on Dark Web Lets Hackers Add Malware to Legit Apps...
Unbounded resource exhaustion in cmark-gfm autolink extension may lead to denial of service
Impact CommonMarker uses cmark-gfm for rendering Github Flavored Markdown. A polynomial time complexity issue in cmark-gfm's autolink extension may lead to unbounded resource exhaustion and subsequent denial of service. Patches This vulnerability has been patched in the following CommonMarker...
GHSA-4QW4-JPP4-8GVP Unbounded resource exhaustion in cmark-gfm autolink extension may lead to denial of service
Impact CommonMarker uses cmark-gfm for rendering Github Flavored Markdown. A polynomial time complexity issue in cmark-gfm's autolink extension may lead to unbounded resource exhaustion and subsequent denial of service. Patches This vulnerability has been patched in the following CommonMarker...
Malicious code in totally-legit-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7beb17014129818ff75cbfeca6fea9bfe8da06e852f3631a1d110035de7c6317 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6615 Malicious code in totally-legit-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7beb17014129818ff75cbfeca6fea9bfe8da06e852f3631a1d110035de7c6317 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fortnite-skin-legit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e141232e079e0063beca04d3a7f2badcb1e36fbd7c8d41daa85d5b351d7d0ce5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in free-robux-legit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c98d0dc620a9fc73af1aa1696391d4771037f7c42de7e92b3060e4c92c37ef85 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3194 Malicious code in free-robux-legit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c98d0dc620a9fc73af1aa1696391d4771037f7c42de7e92b3060e4c92c37ef85 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Event Manager for WooCommerce < 3.5.3 - Unauthenticated Arbitrary Elementor Template Import
The mepimportajaxtemplate AJAX action of the plugin, available to both unauthenticated and authenticated users, is lacking any authorisation and CSRF checks. As a result, unauthenticated user can import arbitrary Elementor template to the blog Legit template:...
Malware service operators arrested; offered antivirus bypassing tools
By Deeba Ahmed The malware encryption service run by a Romanian duo helped hackers embed malicious code in legit software to bypass antivirus tools. This is a post from HackRead.com Read the original post: Malware service operators arrested; offered antivirus bypassing tools...
legitclaims.co.uk Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1124384 Security Researcher g0bl1nsec Helped patch 3741 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting legitclaims.co.uk website...
Exploit for Improper Input Validation in Nema Dicom_Standard
Bad-DICOM PoC of my handcrafted CVE-2019-11687's exploit tool...
CVE-2018-13212
The sell function of a smart contract implementation for EthereumLegit, an Ethereum token, has an integer overflow in which "amount sellPrice" can be zero, consequently reducing a seller's assets...