MAL-2024-12195 Malicious code in artifact-lab-3-package-1f7a39bc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 986e5ddc5b52149bd60f2e303abd548699bee247784d2201ea6e6814790557bf Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12204 Malicious code in artifact-lab-3-package-e46d5661 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2269a33b8aa9a49d54f1cfc01613f285eb3014d0d6adb0ff0ff00fee4e7615d4 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12198 Malicious code in artifact-lab-3-package-34b21b63 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a814378a8188b464c5289007203c2b20c3ec2a0383ee18bd96e0f41ad44d7982 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12206 Malicious code in artifact-lab-3-package-f70fc6dd (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a9387b7d87481e9cd5b097ef03cf94182d34336833057cca2ed1ea47914d55cb Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12200 Malicious code in artifact-lab-3-package-438d82fc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fb5b4138d768e7efb48da60b6d89cdb6d3e2b6dfd97a4848d38ea24ca106af84 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12199 Malicious code in artifact-lab-3-package-3ccf47e8 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7239a7e420a096b7396ccc6e482472827791876070b026e5126d694e4a548920 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12202 Malicious code in artifact-lab-3-package-b9485a2f (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 902094a9d90c1b9cc5eca3aa3d809929f664931dfa9feaea432bf85d205b06ed Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

PT-2024-7408 · Siemens · Simatic Reader Rf615R +11

Name of the Vulnerable Software and Affected Versions: SIMATIC Reader RF610R CMIIT versions prior to V4.2 SIMATIC Reader RF610R ETSI versions prior to V4.2 SIMATIC Reader RF610R FCC versions prior to V4.2 SIMATIC Reader RF615R CMIIT versions prior to V4.2 SIMATIC Reader RF615R ETSI versions prior...

PT-2024-38330 · WordPress · Pdf Builder For Wpforms

Name of the Vulnerable Software and Affected Versions: PDF Builder for WPForms plugin for WordPress versions up to, and including, 1.2.116 Description: The issue is related to Full Path Disclosure, which occurs because the plugin allows direct access to the composer-setup.php file with display...

kernel: cifs: Fix memory leak when build ntlmssp negotiate blob failed

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory leak when build ntlmssp negotiate blob failed There is a memory leak when mount cifs: unreferenced object 0xffff888166059600 size 448: comm "mount.cifs", pid 51391, jiffies 4295596373 age 330.596s hex dump first ...

kernel: bonding: stop the device in bond_setup_by_slave()

In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 "net: lapbether: only support ethernet devices" has been able to keep syzbot away from net/lapb, until today. In the following splat 1, the issue is that a lapbethe...

AZL-47492 CVE-2024-42246 affecting package kernel for versions less than 6.6.43.1-7

In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetupsocket When using a BPF program on kernelconnect, the call can return -EPERM. This causes xstcpsetupsocket to loop forever, filling up the syslog and causing the...

UBUNTU-CVE-2024-42246

In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetupsocket When using a BPF program on kernelconnect, the call can return -EPERM. This causes xstcpsetupsocket to loop forever, filling up the syslog and causing the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the net, sunrpc module in the xstcpsetupsocket, where the BPF program may return -EPERM if the connection...

BIT-WORDPRESS-MULTISITE-2024-3992

The Amen WordPress plugin through 3.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Malicious code in advdef01 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 44ffce32113cbe3c908fd584f4b02617cafcfecccc3cea1c4fc068021c4bfa7d Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...

MAL-2024-12321 Malicious code in paquete-5 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4f3a3134bb30ff4d1c08b8ab3469f769ad1a1654d39e0c3e818973063d524d75 Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...

MAL-2024-12189 Malicious code in advdef01 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 44ffce32113cbe3c908fd584f4b02617cafcfecccc3cea1c4fc068021c4bfa7d Package uses the template from https://github.com/thegoodhackertv/malpip to explore building malicious PyPI packages. --- Category: MALICIOUS - The campaign ha...

CVE-2024-3636

The Pinpoint Booking System WordPress plugin before 2.9.9.4.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-6270

The Community Events WordPress plugin before 1.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...