MAL-2026-2979 Malicious code in tsdoc-build-rig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9483578294aa1f05417210a36c0840de9fe1104aa1c36c6cad6f0ac4fe4760 The package tsdoc-build-rig was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in tsdoc-build-rig (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa9483578294aa1f05417210a36c0840de9fe1104aa1c36c6cad6f0ac4fe4760 The package tsdoc-build-rig was found to contain malicious code. Source: ossf-package-analysis...

EUVD-2024-45719

Malicious code in bioql PyPI...

Malicious code in decoupled-local-node-rig (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 25f0aee1e117152ac6f4bf01df0fc766d85a482953feea9fdece74e016a3cc65 The OpenSSF Package Analysis project identified...

MAL-2025-41380 Malicious code in decoupled-local-node-rig (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 25f0aee1e117152ac6f4bf01df0fc766d85a482953feea9fdece74e016a3cc65 The OpenSSF Package Analysis project identified...

Malicious code in heft-minimal-rig-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0a085da2f08feb8c00f2c512e03267a7ecdf55cb417d1d0cdb1f663604f95119 The OpenSSF Package Analysis project identified 'heft-minimal-rig-test' @ 99.0.9 npm as malicious. It is considered malicious because: - The...

MAL-2025-41293 Malicious code in heft-minimal-rig-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0a085da2f08feb8c00f2c512e03267a7ecdf55cb417d1d0cdb1f663604f95119 The OpenSSF Package Analysis project identified 'heft-minimal-rig-test' @ 99.0.9 npm as malicious. It is considered malicious because: - The...

Malicious code in heft-web-rig-library-tutorial (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5305ed5a8b702f1ebff37fd77c6a498586782cc76fa0f351f18c6ad13efdd194 The OpenSSF Package Analysis project identified 'heft-web-rig-library-tutorial' @ 99.0.9 npm as malicious. It is considered malicious because: -...

MAL-2025-41296 Malicious code in heft-web-rig-library-tutorial (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 5305ed5a8b702f1ebff37fd77c6a498586782cc76fa0f351f18c6ad13efdd194 The OpenSSF Package Analysis project identified 'heft-web-rig-library-tutorial' @ 99.0.9 npm as malicious. It is considered malicious because: -...

CVE-2024-51927

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Asaduzzaman Abir Rig Elements For Elementor rig-elements allows DOM-Based XSS.This issue affects Rig Elements For Elementor: from n/a through = 1.0...

CVE-2024-51927

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Asaduzzaman Abir Rig Elements For Elementor rig-elements allows DOM-Based XSS.This issue affects Rig Elements For Elementor: from n/a through = 1.0...

CVE-2024-51927

CVE-2024-51927 is linked to Rig Elements For Elementor (WordPress plugin). Connected sources indicate an authenticated, DOM-based Cross-Site Scripting vulnerability in Rig Elements For Elementor, affecting versions up to 1.0 (auth+ requirement implied). The issue arises from improper input handli...

CVE-2024-51927 WordPress Rig Elements For Elementor plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Asaduzzaman Abir Rig Elements For Elementor rig-elements allows DOM-Based XSS.This issue affects Rig Elements For Elementor: from n/a through = 1.0...

PT-2024-35059 · Elementor · Codember Rig Elements For Elementor

Name of the Vulnerable Software and Affected Versions: Codember Rig Elements For Elementor versions 1.0 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows for DOM-Based XSS. This means an attacker could potentially inject...

WordPress plugin Rig Elements For Elementor 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

WordPress Rig Elements For Elementor plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Rig Elements For Elementor versions = 1.0...

Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining

The infamous cryptojacking group known as TeamTNT appears to be readying for a new large-scale campaign targeting cloud-native environments for mining cryptocurrencies and renting out breached servers to third-parties. "The group is currently targeting exposed Docker daemons to deploy Sliver...

Malicious code in local-node-rig (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c27eabc498de725ddfd8be17bff9aec9e4dacaef2050fde05ab89943a28a115 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-8959 Malicious code in local-node-rig (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4c27eabc498de725ddfd8be17bff9aec9e4dacaef2050fde05ab89943a28a115 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Internet Explorer users still targeted by RIG exploit kit

Despite a very slim browser market share, Internet Explorer IE is still being exploited by exploit kits like the RIG exploit kit EK. One major advantage for the malware distributors behind the exploit kit is that the outdated browser has reached end-of-life EOL, which means it no longer receives...