MAL-2026-15 Malicious code in eslint-config-skynet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7e73967dab61cd67b0f3c96ab2c059e3fc5405fb451c62165d429bfbcf1e3df The package eslint-config-skynet was found to contain malicious code...

Malicious code in eslint-config-skynet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7e73967dab61cd67b0f3c96ab2c059e3fc5405fb451c62165d429bfbcf1e3df The package eslint-config-skynet was found to contain malicious code...

EUVD-2026-0739

Malicious code in eslint-config-skynet npm...

CVE-2025-63004

Missing Authorization vulnerability in Skynet Technologies USA LLC All in One Accessibility all-in-one-accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects All in One Accessibility: from n/a through = 1.15...

CVE-2025-63004

CVE-2025-63004 involves a Missing Authorization vulnerability in the WordPress plugin All in One Accessibility by Skynet Technologies USA LLC. Public data indicates affected version range is from n/a through 1.14, with a CVSS3.1 base score of 4.3 (AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N). The connect...

CVE-2025-63004 WordPress All in One Accessibility plugin <= 1.15 - Broken Access Control vulnerability

Missing Authorization vulnerability in Skynet Technologies USA LLC All in One Accessibility all-in-one-accessibility allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects All in One Accessibility: from n/a through = 1.15...

CVE-2025-34247

creationtimestamp| type| source ---|---|--- 2025-11-06 21:06:08+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m4yhr3zxsyc2...

Malicious code in skynet-api-v2 (npm)

The package skynet-api-v2 was found to contain malicious code...

MAL-2025-33394 Malicious code in skynet-api-v2 (npm)

The package skynet-api-v2 was found to contain malicious code...

CVE-2025-3975

creationtimestamp| type| source ---|---|--- 2025-04-27 16:10:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13624 2025-04-27 18:49:48+00:00| seen| https://t.me/cvedetector/23845 2025-04-27 19:40:11+00:00| seen|...

Developing a Blockchain-Based Secure Digital Contents Distribution System

As digital content distribution expands rapidly through online platforms, securing digital media and protecting intellectual property has become increasingly complex. Traditional centralized systems, while widely adopted, suffer from vulnerabilities such as single points of failure and limited...

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan a.k.a. AnonSudan, a cybercrime business known for launching powerful distributed denial-of-service DDoS attacks against a range of targets, including dozens of hospitals,...

GO-2024-2938 LocalAI path traversal vulnerability in github.com/go-skynet/LocalAI

LocalAI path traversal vulnerability in github.com/go-skynet/LocalAI. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners, please suggest...

Malicious code in by-skynet (npm)

--- -= Per source details. Do not edit below this line.=-...

PT-2024-34946 · Go Skynet · Localai

Name of the Vulnerable Software and Affected Versions: mudler/localai version 2.14.0 github.com/go-skynet/LocalAI before v2.16.0 Description: A path traversal vulnerability exists, allowing an attacker to exploit the model parameter during the model deletion process to delete arbitrary files. By...

GO-2024-2717 LocalAI Command Injection in audioToWav in github.com/go-skynet/LocalAI

LocalAI Command Injection in audioToWav in github.com/go-skynet/LocalAI. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners, please...

GO-2024-2705 LocalAI cross-site request forgery vulnerability in github.com/go-skynet/LocalAI

LocalAI cross-site request forgery vulnerability in github.com/go-skynet/LocalAI...

Darknet Carding Kingpin Pleads Guilty: Sold Financial Info of Tens of Thousands

A U.S. national has pleaded guilty in a Missouri court to operating a darknet carding site and selling financial information belonging to tens of thousands of victims in the country. Michael D. Mihalo , aka Dale Michael Mihalo Jr. and ggmccloud1, has been accused of setting up a carding site call...

Darknet Carding Kingpin Pleads Guilty: Sold Financial Info of Tens of Thousands

A U.S. national has pleaded guilty in a Missouri court to operating a darknet carding site and selling financial information belonging to tens of thousands of victims in the country. Michael D. Mihalo, aka Dale Michael Mihalo Jr. and ggmccloud1, has been accused of setting up a carding site calle...

skynet-cyberdyne.de Cross Site Scripting vulnerability OBB-2678797

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...