Malicious code in new-cod-mobile-h-ack-working-2023-march (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eef6e06bec3c2593911ecfae523f2324500500664b97da7bf34487325352a09c The package new-cod-mobile-h-ack-working-2023-march was found to contain malicious code...

MAL-2025-48943 Malicious code in new-tiktok-h-ack-working-2023-march (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d3257e6436c4ec191b344e85593e5bea0a9e5b8669151176a87eee554c53ca86 The package new-tiktok-h-ack-working-2023-march was found to contain malicious code...

MAL-2025-46466 Malicious code in unlimited-free-coin-master-spins-march-2023-efkefr (npm)

The package unlimited-free-coin-master-spins-march-2023-efkefr was found to contain malicious code...

Malicious code in free-fortnite-vbucks-codes-march-2023-zdkze (npm)

The package free-fortnite-vbucks-codes-march-2023-zdkze was found to contain malicious code...

MAL-2025-44387 Malicious code in generate-unlimited-coin-master-spins-march-2023-dkdzdz (npm)

The package generate-unlimited-coin-master-spins-march-2023-dkdzdz was found to contain malicious code...

MAL-2025-44399 Malicious code in get-free-coin-master-spins-march-2023-djazdk (npm)

The package get-free-coin-master-spins-march-2023-djazdk was found to contain malicious code...

MAL-2025-44336 Malicious code in free-v-bucks-codes-march-2023-fdkzldz (npm)

The package free-v-bucks-codes-march-2023-fdkzldz was found to contain malicious code...

MAL-2025-44629 Malicious code in how-i-get-robux-codes-march-2023-dkzzdarg (npm)

The package how-i-get-robux-codes-march-2023-dkzzdarg was found to contain malicious code...

MAL-2025-46375 Malicious code in trick-free-spins-coin-master-march-2023-dezdzl (npm)

The package trick-free-spins-coin-master-march-2023-dezdzl was found to contain malicious code...

MAL-2025-45207 Malicious code in mobile-legends-free-diamonds-march-2023-working-dklzz (npm)

The package mobile-legends-free-diamonds-march-2023-working-dklzz was found to contain malicious code...

Malicious code in free-fortnite-vbucks-in-march-2023-updated-and-working-rekgek (npm)

The package free-fortnite-vbucks-in-march-2023-updated-and-working-rekgek was found to contain malicious code...

MAL-2025-20936 Malicious code in free-fortnite-vbucks-march-2023-updated-djkzez (npm)

The package free-fortnite-vbucks-march-2023-updated-djkzez was found to contain malicious code...

MAL-2025-37871 Malicious code in unlimited-fortnite-vbucks-march-2023-dkzszd (npm)

The package unlimited-fortnite-vbucks-march-2023-dkzszd was found to contain malicious code...

CVE-2023-27639

An issue was discovered in the tshirtecommerce aka Custom Product Designer component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter filename in the tshirtecommerce/ajax.php?type=svg endpoint, to allow a remote attacker to traverse directories on the system in order to...

Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFix for March 2023.

Summary Security vulnerabilities are addressed with IBM Business Automation Insights 23.0.2-IF003. Vulnerability Details CVEID:CVE-2024-26308 DESCRIPTION: Apache Commons Compress is vulnerable to a denial of service, caused by an out of memory error. By persuading a victim to open a specially...

DEBIAN-CVE-2023-30801

All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and...

Default credentials

All versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and...

CVE-2023-27639

An issue was discovered in the tshirtecommerce aka Custom Product Designer component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter filename in the tshirtecommerce/ajax.php?type=svg endpoint, to allow a remote attacker to traverse directories on the system in order to...

CVE-2023-27640

An issue was discovered in the tshirtecommerce aka Custom Product Designer component 2.1.4 for PrestaShop. An HTTP request can be forged with the POST parameter type in the /tshirtecommerce/fonts.php endpoint, to allow a remote attacker to traverse directories on the system in order to open files...

PT-2023-21276 · Prestashop · Tshirtecommerce

Name of the Vulnerable Software and Affected Versions: tshirtecommerce aka Custom Product Designer component version 2.1.4 for PrestaShop Description: An issue allows a remote attacker to forge an HTTP request with the POST parameter type in the "/tshirtecommerce/fonts.php" endpoint, enabling...