MAL-2025-166146 Malicious code in suharta-poke2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1441531a0e40b0b913e992c59ee4ddf00083275d0017342221b01eaddbebfe6c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-73998 Malicious code in kurniawan-getas11-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b59245ddc3e3c077a3bc92bb2bc22c8a565317d87637981eb0cb64640329845 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Revamped Nukebot Malware Changes Targets, Adds Functions

A revamped version of the Nukebot banking trojan dubbed Jimmy Nukebot has shifted focus from stealing bankcard data and now acts as a conduit for quietly downloading malicious payloads for web-injects, cryptocurrency mining, and taking screenshots of targeted systems. The code is a modification o...

CVE-2012-6067

freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c...

Authentication flaw

freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c...

Ce-Admin news publishing system vulnerability analysis-vulnerability warning-the black bar safety net

The news publishing system is currently mainly used for a picture news release, due to the generated html, the browsing speed is very fast, resulting in a more modified version, currently found in at least 4 modified version, the user group of the majority, although modified, but still there are...