4 matches found
Malicious Package
Overview tourney-sdk-react is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-1388 Malicious code in tourney-sdk-react (npm)
The package exfiltrates system data to remote server --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c5364bf5b440c1fcec66cbe29b7243db3661868744f68aebeb5f8b99619d950 The package tourney-sdk-react was found to contain malicious code. Source: ghsa-malware...
Malicious code in tourney-sdk-react (npm)
The package exfiltrates system data to remote server --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7c5364bf5b440c1fcec66cbe29b7243db3661868744f68aebeb5f8b99619d950 The package tourney-sdk-react was found to contain malicious code. Source: ghsa-malware...
CVE-2008-1128
CVE-2008-1128 involves a PHP remote file inclusion in the PHPMyTourney 2 package, specifically in tourney/index.php. The vulnerability allows an attacker to execute arbitrary PHP code by supplying a crafted value in the page parameter, leading to remote code execution via a network-accessible end...