46 matches found
MAL-2025-71104 Malicious code in thick-harlequin-panda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f65fce271b408d5f9a8895fa6c3c10c67eb67a5d95e75eb0cd5d60279dadd9a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in thick-blue-barracuda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51833b183cecfb67e44f4954fcc38ce7f3186a497b732fa67f1615ba597052f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-51543
Malicious code in thick-yellow-rooster npm...
EUVD-2025-51547
Malicious code in thick-blush-hyena npm...
MAL-2025-71101 Malicious code in thick-blue-barracuda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51833b183cecfb67e44f4954fcc38ce7f3186a497b732fa67f1615ba597052f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in thick_wren_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44f8d1600f4df85dee5e79d2ef50740f02eb914aec1972c3126cc32924d705f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
CVE-2024-46505
Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...
CVE-2024-46505
Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...
CVE-2024-46505
Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...
CVE-2024-46505
CVE-2024-46505 affects Infoblox BloxOne v2.4. The vulnerability is described as a business logic flaw arising from thick-client vulnerabilities in the product. The CVSS v3.1 vector indicates high impact with critical severity (Network attack, no privileges, no user interaction required for exploi...
CVE-2024-46505
Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...
PT-2025-2738 · Infoblox · Infoblox Bloxone
Name of the Vulnerable Software and Affected Versions: Infoblox BloxOne version 2.4 Description: A business logic flaw was discovered due to thick client vulnerabilities. Recommendations: For Infoblox BloxOne version 2.4, consider restricting access to the thick client until a patch is available...
CVE-2023-49312
Precision Bridge PrecisionBridge.exe aka the thick client before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address...
CVE-2023-49312
Precision Bridge PrecisionBridge.exe aka the thick client before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address...
NCH Express Invoice 7.25 Cleartext Password
Exploit Title: NCH Express Invoice - Clear Text Password Storage and Account Takeover Google Dork:: intitle:ExpressInvoice - Login Date: 07/Apr/2020 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://www.nchsoftware.com/ Software Link:...
A Man of Action: Meet Callum Carney
Hidden Talents : He was a competitive swimmer for many years. Instrument of Choice : His fingers were made for the keyboard, but he used to play the trumpet. 5 pieces of entertainment for the rest of his life : The Office, World War Z, The Matrix, Breaking Bad, The Thick of It...
A Man of Action: Meet Callum Carney
Hidden Talents : He was a competitive swimmer for many years. Instrument of Choice : His fingers were made for the keyboard, but he used to play the trumpet. 5 pieces of entertainment for the rest of his life : The Office, World War Z, The Matrix, Breaking Bad, The Thick of It...
MITM_Intercept - A Little Bit Less Hackish Way To Intercept And Modify non-HTTP Protocols Through Burp And Others
A little bit less hackish way to intercept and modify non-HTTP protocols through Burp and others with SSL and TLS interception support. This tool is for researchers and applicative penetration testers that perform thick clients security assesments. An improved version of the fantastic mitmrelay...
ERS Data System 1.8.1 - Java Deserialization Exploit
Exploit for windows platform in category remote exploits Exploit Title: ERS Data System 1.8.1 Deserialize Vulnerability Google Dork: N/A Date: 9/21/2017 Exploit Author: West Shepherd Vendor Homepage: http://www.ersdata.com Software Link: www.ersdata.com/downloads/ErsSetup.exe Version: 1.8.1.0...
ERS Data System 1.8.1 Java Deserialization
Exploit Title: ERS Data System 1.8.1 Deserialize Vulnerability Google Dork: N/A Date: 9/21/2017 Exploit Author: West Shepherd Vendor Homepage: http://www.ersdata.com Software Link: www.ersdata.com/downloads/ErsSetup.exe Version: 1.8.1.0 Tested on: Windows 7 x86 CVE : CVE-2017-14702 Description: E...