Malicious code in agus-soto89-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e2dd3bf68b36245debc3b9f3f31cd5fd695f5521e39eb60e227b9822b2603ed1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in arif-asinan68-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4769a24bf3d7e762586357808173e0f672a91f392815cfc0483126c48eab0ccf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

AllaKore RAT’s Grip Tightens on Mexican Financial Institutions

Summary: A threat actor has been targeting Mexican banks and cryptocurrency trading since at least 2021. Using custom installers, the actor distributes a modified version of the AllaKore RAT, an open-source remote access tool. The campaign cleverly mimics the Mexican Social Security Institute IMS...

Playing Doom on a John Deere tractor with Sick Codes: Lock and Code S03E18

In 1993, the video game developers at id Software released Doom, a first-person shooter that placed a nameless protagonist into the fiery depths of hell, equipped with an arsenal of weapons to mow down imps, demons, lost souls, and the intimidating "Barons of Hell." In 2022, the hacker Sick Codes...

TOWN (modified version) vulnerable to directory traversal

Overview TOWN modified version provided by Tattyan's HP contains a directory traversal vulnerability. Misukuro reported this vulnerability to the developer. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A remote attacker may obtain arbitrary...

JVN#41703192: TOWN (modified version) vulnerable to directory traversal

TOWN modified version provided by Tattyan's HP contains a directory traversal vulnerability. Impact A remote attacker may obtain arbitrary files on the server. Solution Apply an update Update to the latest version according to the information provided by the developer. Products Affected TOWN...

TOWN (modified version) vulnerable to cross-site scripting

Overview TOWN modified version contains a cross-site scripting vulnerability. TOWN modified version provided by Tattyan's HP contains a cross-site scripting vulnerability. Yu Yagihashi of Keiji Takeda Lab, Keio University reported this vulnerability to IPA. JPCERT/CC coordinated with the develope...

phpMyAdmin server_sync.php Backdoor (PMASA-2012-5)

The phpMyAdmin install hosted on the remote web server contains a backdoor script, probably obtained from the cdnetworks-kr-1 SourceForge.net mirror site as part of the file phpMyAdmin-3.5.2.2-all-languages.zip. An unauthenticated, remote attacker can use this backdoor to execute arbitrary PHP co...

cisspcom-sql.txt

Long time ago someone posted here SQL injection on CISSP page. No changes. I post slightly "modified" version to bug them again http://career.cissp.com/Bios/CompanyBio.asp?EmployerID=10328199%20union% 20select%201,2,3,select%20top%201%20name%20from%20sysobjects%20where%...

PhpSpy 2 0 0 6 final modified version-the vulnerability warning-the black bar safety net

Files and directories to a ZIP package to download 2. MySql and Ftp brute force 3. Within the network computer name and IP conversion 4. The use of MySql upload download file 5. Added custom settings 6. Alexa rank,off by default 7. Using ADODB to execute SQL statements 8. There are other...

PHP-Nuke INP XSS

---------------------------------------------------------- Aria-Security.net Advisory Discovered by: l2odon www.Aria-security.net Gr33t to: O.U.T.L.A.W & A.u.r.a & DrtRp & Cl0wn ----------------------------------------------------------- Software: PHP-Nuke INP Description: PHP-Nuke INP is the...