18 matches found
EUVD-2025-138136
Malicious code in avangs-olium-nit npm...
Malicious code in guras-nit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0349a473eb091889b1fa4767a13e6a5841451e9c484268f50707cc8eb0cb82e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-155410 Malicious code in guras-nit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0349a473eb091889b1fa4767a13e6a5841451e9c484268f50707cc8eb0cb82e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
kernel: Fix of 39 CVEs
nfs: fix UAF in direct writes CVE-2024-26958 - NFSD: Fix the behavior of READ near OFFSETMAX CVE-2022-48827 - thermal: core: prevent potential string overflow CVE-2023-52868 - ath5k: fix OOB in ath5keepromreadpcalinfo5111 CVE-2021-47633 - RDMA/cma: Ensure rdmaaddrcancel happens before issuing...
MAL-2025-27563 Malicious code in nit-template-service-core-lib (npm)
The package nit-template-service-core-lib was found to contain malicious code...
Malicious code in nit-quotation-service-core-lib (npm)
The package nit-quotation-service-core-lib was found to contain malicious code. --- -= Per source details. Do not edit below this line.=-...
Malicious code in nit-template-service-core-lib (npm)
The package nit-template-service-core-lib was found to contain malicious code...
SUSE CVE-2024-26862
In the Linux kernel, the following vulnerability has been resolved: packet: annotate data-races around ignoreoutgoing ignoreoutgoing is read locklessly from devqueuexmitnit and packetgetsockopt Add appropriate READONCE/WRITEONCE annotations. syzbot reported: BUG: KCSAN: data-race in devqueuexmitn...
ostad.nit.ac.ir Cross Site Scripting vulnerability OBB-3622006
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
3nit-utils (>=0.30.0 <=1.0.2), 6ix (=0.0.0-canary.0) +1008 more potentially affected by CVE-2022-25858 via terser (>=4.0.0 <=4.8.0)
terser NPM version =4.0.0, =0.30.0, =0.0.0-canary.0, =0.0.1, =1.0.0, =1.0.0, =0.0.2, =0.0.2, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.10 - @agilejs/cli =1.0.0 and more Source cves: CVE-2022-25858 Source advisory: SNYK:JS-TERSER-2806366...
DOJ Dismisses Playpen Case to Keep Tor Hack Private
Intent on keeping details private about how it hacked the Tor browser, prosecutors with the U.S. Department of Justice on Friday asked to dismiss a case involving a suspect who visited the Playpen dark web child pornography site in 2015. “The government must now choose between disclosure of...
Judge Tosses Evidence Gathered by FBI's Tor Exploit
The FBI’s refusal to share details about a network investigative technique it used to gather evidence against a Vancouver teacher charged with possession of child pornography has forced a federal judge’s hand to exclude the evidence from trial. The NIT used by the FBI to hack the Playpen website ...
Mozilla asks Court to disclose Firefox Exploit used by FBI to hack Tor users
Mozilla has filed a brief with a U.S. District Court asking the FBI to disclose the potential vulnerabilities in its Firefox browser that the agency exploited to unmask TOR users in a criminal investigation. Last year, the FBI used a zero-day flaw to hack TOR browser and de-anonymize users visiti...
Motion Filed Asking FBI To Disclose Tor Browser Zero Day
Mozilla on Wednesday filed a motion with the U.S. District Court in Tacoma, Wa., asking the government to disclose a vulnerability it exploited in the Tor Browser and Firefox. The FBI used the zero-day to hack a child pornography site and de-anonymize users visiting the site using the Tor Browser...
The FBI against the judges command: declined to use the Tor browser vulnerability code-vulnerability warning-the black bar safety net
! Last month, the FBI was ordered disclosure used to attack the dark web child pornography website single visitors single full version malicious code. To make this decision of judge Robert J. Bryan, he expressed his understanding of the FBI what exactly is how to caught the accused is a very fair...
FBI is fighting back against Judge's Order to reveal TOR Exploit Code
Last month, the Federal Bureau of Investigation FBI was ordered to reveal the complete source code for the TOR exploit it used to hack visitors of the world’s largest dark web child pornography site, PlayPen. Robert J. Bryan, the federal judge, ordered the FBI to hand over the TOR browser exploit...
Pragyan CMS 3.0 - SQL Injection
Pragyan CMS 3.0 - SQL Injection Advisory: SQL injection vulnerability in Pragyan CMS v.3.0 Advisory ID: SROEADV-2015-11 Author: Steffen Rösemann Affected Software: Pragyan CMS v.3 Vendor URL: https://github.com/delta/pragyan, http://delta.nitt.edu/ Vendor Status: vendor did not respond after...
Threat Outbreak Alert RuleID11665: Email Messages Distributing Malicious Software on September 23, 2014
Medium Alert ID: 35805 First Published: 2014 September 24 12:34 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID11665 may contain the following files: Name ...