CVE-2026-7784 RTGS2017 NagaAgent Skills Endpoint extensions.py path traversal

A vulnerability has been found in RTGS2017 NagaAgent up to 5.1.0. This issue affects some unknown processing of the file apiserver/routes/extensions.py of the component Skills Endpoint. Such manipulation of the argument Name leads to path traversal. It is possible to launch the attack remotely. T...

Malicious code in namae-naga-npuyo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 12ec83c0c6f0308e1f8e009665295adf80259adaa45ea158ca43e1b614698eff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

The Rise of Collaborative Tactics Among China-aligned Cyber Espionage Campaigns

Trend™ Research examines the complex collaborative relationship between China-aligned APT groups via the new “Premier Pass-as-a-Service” model, exemplified by the recent activities of Earth Estries and Earth Naga...

EUVD-2024-36206

Malicious code in bioql PyPI...

SUSE CVE-2024-36761

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs...

CVE-2024-36761

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs...

CVE-2024-36761

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs...

CVE-2024-36761

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs...

naga Security Breach

Naga is a repository for the Rust Graphics Mages project for generic shader translation in Rust. A security vulnerability exists in naga version 0.14.0 that stems from a stack overflow in a related component...

CVE-2024-36761

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs...

CVE-2024-36761

CVE-2024-36761 affects naga v0.14.0, with a stack overflow in the WGSL parser component at /wgsl/parse/mod.rs. The CVSSv3.1 data indicates a high-severity, remote‑attack surface (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) with a base score of 9.8. Exploitation details are not provided in the supplied d...

[SECURITY] Fedora 40 Update: naga-3.0-26.20200930git6f1e95d.fc40

Naga aims to be a very small NIO library that provides a handful of java classes to wrap the usual Socket and ServerSocket with asynchronous NIO counterparts similar to NIO2 planned for Java 1.7. All of this is driven from a single thread, making it useful for both client e.g. allowing I/O to be...

naga number error vulnerability

naga is an ethereum-based digital currency. An integer overflow vulnerability exists in the 'mintToken' function in naga's smart contract implementation. An attacker can exploit this vulnerability to set the balance of any user to an arbitrary value...

UPDATE: SILENTTRINITY v0.3.0

PenTestIT RSS Feed Just yesterday, I wrote about this open source post-exploitation C2 framework and a new release is already available. The post was titled - List of Open Source C2 Post-Exploitation Frameworks. We now have SILENTTRINITY v0.3.0 amongst us, which was in the works for a long time!...

CVE-2018-13492

The mintToken function of a smart contract implementation for naga, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value...

CVE-2018-13492

The mintToken function of a smart contract implementation for naga, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value...

PT-2018-11871 · Ethereum · Naga

Name of the Vulnerable Software and Affected Versions: naga affected versions not specified Description: The issue concerns an integer overflow in the mintToken function of a smart contract implementation for naga, an Ethereum token. This overflow allows the owner of the contract to set the balan...