MAL-2023-7932 Malicious code in casino.web (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx feffdfd456f40706d2380c15768e0a8e7449f6c5a2c60d257ef67d5f84d5b6ac Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Rocky Linux 8 : rust-toolset:rhel8 (RLSA-2023:4635)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:4635 advisory. - Cargo downloads the Rust project's dependencies and compiles the project. Cargo prior to version 0.72.2, bundled with Rust prior to version 1.71.1, did not...

Malicious code in casino.web (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx feffdfd456f40706d2380c15768e0a8e7449f6c5a2c60d257ef67d5f84d5b6ac Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Malicious code in sso-map (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ec3637a741345c5082ec0b969e5d295b30baf6cc1647f0f684951624ee0ba64b Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

MAL-2023-8036 Malicious code in sso-map (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ec3637a741345c5082ec0b969e5d295b30baf6cc1647f0f684951624ee0ba64b Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

CVE-2022-48554

File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...

Malicious code in docs-public-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ef1db73ad9c5c4da2dd3bded796ac7c4f660ab81ff6fd5cd77f0452265d05d6f Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

Malicious code in vision-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 22b046ac73ecbc50209ffe4bb757a9736adafeb2a51ad9123c0d8a3902374246 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

MAL-2023-8026 Malicious code in docs-public-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ef1db73ad9c5c4da2dd3bded796ac7c4f660ab81ff6fd5cd77f0452265d05d6f Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

MAL-2023-8039 Malicious code in vision-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 22b046ac73ecbc50209ffe4bb757a9736adafeb2a51ad9123c0d8a3902374246 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

Malicious code in olymptrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 980d1b05adbe09f084ff3a74bbcdf8e7b12c80d99842d8caf74bb22009af6e38 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

MAL-2023-7940 Malicious code in school-task-tester (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 68ee519ca1ab3166481b83f77e489872146bf1fb26bfe3678f16da5e5aa169a0 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Malicious code in hh-dep-monitoring (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ac7b27f86bac41db082963b72360f1c159fa5ecbaf4a72d766ae92548df697f3 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

MAL-2023-8032 Malicious code in olymptrade (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 980d1b05adbe09f084ff3a74bbcdf8e7b12c80d99842d8caf74bb22009af6e38 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

MAL-2023-7939 Malicious code in orbitplate (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx df1bde52050b0c84fcf4221afb1f77445edcbfc7e307f2eaf54fb104ce916f06 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

MAL-2023-7937 Malicious code in hh-dep-monitoring (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ac7b27f86bac41db082963b72360f1c159fa5ecbaf4a72d766ae92548df697f3 Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

MAL-2023-7931 Malicious code in career-service-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx d053ab0c6c3eb4184d3e98ecd922d23cc351f70a7df8a410d1271644721481ac Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...

Hospital Information System Cross-Site Scripting Vulnerability

Hospital Information System is a hospital information management system organized by SourceCode and Projects. A security vulnerability exists in Code Projects Hospital Information System version 1.0 that stems from a cross-site scripting XSS vulnerability...

New Yashma Ransomware Variant Mimics WannaCry in New Attack

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A Vietnamese-origin threat actor employs a Yashma ransomware variant since June 2023, using unique GitHub-based ransom note delivery and mimicking WannaCry. This operation demonstrates the accelerated...

Malicious code in ng-zulutrade-ssr (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx b7f6b1d4585de70357f4ac94823e53c6846ebaeaf161d5088e75c3fde5f7ac05 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...