MAL-2024-8973 Malicious code in quickstart-calls-chat-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 66bc97e10c5b859cfaa1494796b4d2bb1741fa0062acbc4521af9369722b0c05 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in quickstart-calls-chat-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 66bc97e10c5b859cfaa1494796b4d2bb1741fa0062acbc4521af9369722b0c05 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in smooch-api-quickstart-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cd19289d32dba6cc486601e216fa686c7ee52df61d81e7d085c91587d03fd007 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

GUAC - Aggregates Software Security Metadata Into A High Fidelity Graph Database

Note: GUAC is under active development - if you are interested in contributing, please look at contributor guide and the "express interest" issue Graph for Understanding Artifact Composition GUAC aggregates software security metadata into a high fidelity graph database—normalizing entity identiti...

org.apache.camel:camel-shiro (=2.5.0), org.apache.shiro.samples:samples-aspectj (=1.0.0-incubating) +29 more potentially affected by CVE-2022-40664 via org.apache.shiro:shiro-core (=1.0.0-incubating)

org.apache.shiro:shiro-core MAVEN version =1.0.0-incubating is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.shiro:shiro-core and may be impacted: - org.apache.camel:camel-shiro =2.5.0 - org.apache.shiro.samples:samples-aspectj...

Gallia - Extendable Pentesting Framework

Gallia is an extendable pentesting framework with the focus on the automotive domain. The scope of gallia is conducting penetration tests from a single ECU up to whole cars, with the main focus on the UDS interface. Taking advantage of this modular design, the logging and archiving functionality...

MAL-2022-4677 Malicious code in monday-integration-quickstart-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f9d04458f46566c206866695d05f24a298848cee6cd7a96d51652e770671e71 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in monday-integration-quickstart-app-typescript (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8de2ecd8dfdada8f48094605e823f311f3362634a9c09c2c66e980f9739fc82f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4676 Malicious code in monday-integration-quickstart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ef623d4ad0bb4b34fe648b3d0bfc74030fcbd72f082694d9378bd7a7f6ad93ed Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in monday-integration-quickstart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ef623d4ad0bb4b34fe648b3d0bfc74030fcbd72f082694d9378bd7a7f6ad93ed Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in bitski-quickstart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 945ed09381c13f2926bc022b49d387b98033af2d2902b04470773bcaaa171edc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1597 Malicious code in bitski-quickstart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 945ed09381c13f2926bc022b49d387b98033af2d2902b04470773bcaaa171edc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in msal-react-quickstart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83dccba5ab95740ba60dc18619f1d94c4103d62925326a49c2b5db5be00cce01 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4722 Malicious code in msal-react-quickstart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83dccba5ab95740ba60dc18619f1d94c4103d62925326a49c2b5db5be00cce01 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Melody - A Transparent Internet Sensor Built For Threat Intelligence

Melody Monitor the Internet's background noise Melody is a transparent internet sensor built for threat intelligence and supported by a detection rule framework which allows you to tag packets of interest for further analysis and threat monitoring. Features Here are some key features of Melody :...

acceldata-o2a (=1.0.0), aleksis-builddeps (>=2021.12.0.post0 <=2022.6.1) +24 more potentially affected by CVE-2020-5252 via safety (>=0.3.0 <=1.8.7)

safety PYPI version =0.3.0, =2021.12.0.post0, =1.1.0, =0.9.0, =0.1.24, =2020.0.2, =0.0.0, =0.2.0.dev20170127093917, =0.1.0, =0.0.12, =0.0.1, =0.0.2 and more Source cves: CVE-2020-5252 Source advisory: OSV:GHSA-7Q25-QRJW-6FG2...

Information Disclosure

tfm-rubygem-fusorui is vulnerable to information disclosure attacks. The vulnerability exists as the web interface in Red Hat QuickStart Cloud Installer QCI 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the...

quickstart.com XSS vulnerability

Open Bug Bounty ID: OBB-690174 Description| Value ---|--- Affected Website:| quickstart.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...

Eclipse Equinoxe OSGi Console Command Execution Exploit

This Metasploit module exploits the Eclipse Equinoxe OSGi Open Service Gateway initiative console fork command to execute arbitrary commands on the remote system.. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework requi...

CVE-2016-5411

/var/lib/ovirt-engine/setup/engine-DC-config.py in Red Hat QuickStart Cloud Installer QCI before 1.0 GA is created world readable and contains the root password of the deployed system...