Lucene search
+L

269 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:14 p.m.5 views

Malicious code in rocket-league-credits-hakc-2022 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 07de2630bcb7a21cf1f16c9305bb3ed4f5df54d95924e14da883d3c9e71c1899 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:14 p.m.5 views

Malicious code in free-robux-app-ios (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5b347e3348cdad05ead50484bae2d80092e72fb5f4cbeecf09bf3d72183d5864 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:13 p.m.4 views

Malicious code in axios-replace (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a686c9db8b278dabb3e76765ae41fd7caae4c05302f3ee663c7ff6781c5d4f1f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:13 p.m.5 views

Malicious code in kibana-buildkite (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 36ce94ea8ca19ba2d2a77464d1224d6dd6158421317cc7f2bf75a00f3454729c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:11 p.m.3 views

Malicious code in ps-validations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a50c241a7e98356e800a9f596795011aff2e24a2a0e6dd09ff2f6d939e6d428 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:10 p.m.6 views

Malicious code in azure-arm-recoveryservicesbackup-samples-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb195a9aa3e88f34ae68f10f754147b9ae059fdcb9e86a74b9a2d544565c3369 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:10 p.m.3 views

Malicious code in playhq_net_jwplayer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8742fc0b0e4d6caebeb977409d758cb6b51392020ee30b32c83a776ed53bd23 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:9 p.m.6 views

Malicious code in preset-modules (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bce4d502bf9ab093c7d390d5b71812207dacb59531230032226826562d298eca Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:9 p.m.3 views

Malicious code in sc-bing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d7bf56f772259e7de9fe49c4783c15ed5c91abc5a6281a06995c34164106e42 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:9 p.m.6 views

Malicious code in meoconlonton-vhx-cricle (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74e46219c746f5ca66a9837373c50e7039b60c93dc0b1a32e9de119138af4dd8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:9 p.m.5 views

Malicious code in code-snippet-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f680de2cbe3d658c28bad18e894dd3fd430e14419dc1cf04f15a54e89f19501d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:8 p.m.7 views

Malicious code in onboarding-setup-guide (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f460bd48ceadd7fb61e181dbe4b1691bed7bffdf1a8137a52f1b2d90a40914c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:8 p.m.6 views

Malicious code in @epc-apps/edge-lambdas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fac603a15d0ab913153cc8c0364ba23ad7ed7b353172ee00e0876c3fecdbfee3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 6:20 p.m.3 views

Malicious code in merakigo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1fc33971e526d97e5bde36de08d69e91b517e420ff72781af62e98a07a120842 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/01 9:25 a.m.6 views

Malicious code in inv-cyber (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e90cb95f7d2d44890fb6be5925a997de1b87b2387d291d2918362152f1c83395 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/05/31 12:55 p.m.4 views

Malicious code in @logistics-frontend/client-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ec68c4d34cf87350cff78bf89af4256fe327563a079c07c24cc75114db204ad Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/05/16 6:47 a.m.5 views

Malicious code in gulp-browserify-thin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ef843cda125c2cda337af64084a57a7a79a488e977a9ec4ca912704ab2059c4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/04 3:5 p.m.20 views

Malicious Package in malicious-npm-package

All versions of malicious-npm-package contain malicious code. The malware targets Windows systems. It runs a powershell command that downloads an executable file from a remote server and runs it. Recommendation Any computer that has this package installed or running should be considered fully...

5.1AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2020/09/03 7:42 p.m.11 views

Malicious Package in coinstirng

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...

3.3AI score
Exploits0References2Affected Software1
Hacker One
Hacker One
added 2019/09/13 7:31 p.m.172 views

Lob: HTTP Request Smuggling on vpn.lob.com

Hi , vpn.lob.com is vulnerable to CL TE Front end server uses Content-Length , Back-end Server uses Transfer-encoding HTTP request smuggling attack. Steps to reproduce 1. Run the burp suite turbo intruder on the following request POST /auth/session HTTP/1.1 Host: vpn.lob.com User-Agent: Mozilla/5...

6.9AI score
Exploits0
Rows per page
Query Builder