Malicious code in @tse-digital/core (npm)

Dependency confusion attack campaign targeting Scandinavian telecommunications and digital services organizations Telenor, Ownit, Vimla, and Customer 360 / C360. Four packages published by the debating0166 npm account use inflated version numbers 99.0.x to win npm registry resolution over private...

MAL-2026-5156 Malicious code in @telenor-se/core (npm)

Dependency confusion attack campaign targeting Scandinavian telecommunications and digital services organizations Telenor, Ownit, Vimla, and Customer 360 / C360. Four packages published by the debating0166 npm account use inflated version numbers 99.0.x to win npm registry resolution over private...

Malicious code in @customer-threesixty/assets (npm)

Dependency confusion attack campaign targeting Scandinavian telecommunications and digital services organizations Telenor, Ownit, Vimla, and Customer 360 / C360. Four packages published by the debating0166 npm account use inflated version numbers 99.0.x to win npm registry resolution over private...

MAL-2026-5157 Malicious code in @tse-digital/core (npm)

Dependency confusion attack campaign targeting Scandinavian telecommunications and digital services organizations Telenor, Ownit, Vimla, and Customer 360 / C360. Four packages published by the debating0166 npm account use inflated version numbers 99.0.x to win npm registry resolution over private...

Malicious code in @telenor-se/core (npm)

Dependency confusion attack campaign targeting Scandinavian telecommunications and digital services organizations Telenor, Ownit, Vimla, and Customer 360 / C360. Four packages published by the debating0166 npm account use inflated version numbers 99.0.x to win npm registry resolution over private...

fotball.idrett.telenor.no Cross Site Scripting vulnerability OBB-3108876

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Myanmar’s Fight for Democracy Is Now a Scrap Over Phone Records

Norwegian telecoms giant Telenor wants to leave Myanmar. Activists say its exit risks putting their data— and their freedom—at risk...

telenor.com.pk XSS vulnerability

Open Bug Bounty ID: OBB-610488 Description| Value ---|--- Affected Website:| telenor.com.pk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

one.telenor.se XSS vulnerability

Vulnerable URL: https://one.telenor.se/reqnewreq.whtml?session=〈=xss%22%3E%3Csvg/onload=prompt%27openbugbounty%27%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 63196 VIP websit...

Zyxel P-2812HNU-F1 DSL Router Command Injection Vulnerability

The Zyxel P-2812HNU-F1 DSL router suffers from a remote command injection vulnerability. Firmware versions V3.11TUE3 KPN and V3.11TUE8 KPN are affected. Zyxel P-2812HNU-F1 DSL router - command injection ================================================= The Zyxel P-2812 is common in the Netherland...

foretag.telenor.se XSS vulnerability

Vulnerable URL: https://foretag.telenor.se/telefoner?sort=%22%3E%3Csvg%20onload%3d%22alert%27OPENBUGBOUNTY%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 08.09.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculate...

telenor.com XSS vulnerability

Vulnerable URL: http://www.telenor.com/media/news-and-announcements/?s-media=xss%22%20onfocus=prompt/OPENBUGBOUNTY/%20autofocus=%22 Details: Description| Value ---|--- Patched:| Yes, at 26.11.2017 Latest check for patch:| 26.11.2017 14:21 GMT Vulnerability type:| XSS Vulnerability status:| Public...

telenor.no XSS vulnerability

Vulnerable URL: https://www.telenor.no/privat/minesider/nybruker/nyBrukerPersonalia.cms?nyBrukerPersonaliaNameAndSsnForm.firstName=xss%22%20onfocus=%22prompt/OPENBUGBOUNTY/%22%20autofocus=%22 Details: Description| Value ---|--- Patched:| Yes, at 11.05.2017 Latest check for patch:| 11.05.2017 13:0...

Telenor banka - Customized SSL, Dangerous filesystem permissions, GPL license vulnerabilities

HackApp vulnerability scanner discovered that application Telenor banka published at the 'play' market has multiple vulnerabilities...

openSUSE Security Update : MozillaThunderbird (MozillaThunderbird-3429)

Mozilla Thunderbird was updated to 3.0.10 to fix one critical security issue. MFSA 2010-73 / CVE-2010-3765: Morten Krkvik of Telenor SOC reported an exploit targeting particular versions of Firefox 3.6 on Windows XP that Telenor found while investigating an intrusion attempt on a customer network...

openSUSE Security Update : seamonkey (seamonkey-3428)

Mozilla SeaMonkey was updated to 2.0.10 to fix one critical security issue. MFSA 2010-73 / CVE-2010-3765: Morten Krkvik of Telenor SOC reported an exploit targeting particular versions of Firefox 3.6 on Windows XP that Telenor found while investigating an intrusion attempt on a customer network...

Mozilla Foundation Security Advisory 2010-73

Mozilla Foundation Security Advisory 2010-73 Title: Heap buffer overflow mixing document.write and DOM insertion Impact: Critical Announced: October 27, 2010 Reporter: Morten Krkvik Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.6.12 Firefox 3.5.15 Thunderbird 3.1.6 Thunderbird...

Heap buffer overflow mixing document.write and DOM insertion — Mozilla

Morten Kråkvik of Telenor SOC reported an exploit targeting particular versions of Firefox 3.6 on Windows XP that Telenor found while investigating an intrusion attempt on a customer network. The underlying vulnerability, however, was present on both the Firefox 3.5 and Firefox 3.6 development...