Malicious code in unique-id-64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8ab3b19e4bd1602de93ca092a5909f8b69927c01d5a690d3484116024dfc46e2 Package impersonates the well-known sindresorhus/unique-string utility: package.json copies the author block name 'Sindre Sorhus', email...

Malicious code in unique-string-64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c13681b6b78ec7996b99f0b0404fe78f1deb2235a379314856002f8f3ec02501 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2026-4332 Malicious code in unique-string-64 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c13681b6b78ec7996b99f0b0404fe78f1deb2235a379314856002f8f3ec02501 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview unique-string-64 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

CVE-2024-36400

nano-id is a unique string ID generator for Rust. Affected versions of the nano-id crate incorrectly generated IDs using a reduced character set in the nanoid::base62 and nanoid::base58 functions. Specifically, the base62 function used a character set of 32 symbols instead of the intended 62...

nanoid information leakage vulnerability

nanoid is a small, secure, URL-friendly, unique string ID generator for JavaScript. nanoid is vulnerable, stemming from nanoid's vulnerability to information exposure via the valueOf function, which allows the last generated id to be reproduced. no details of the vulnerability are currently...

PoC

Scripts for porting debug symbol information idb2patriprel...

WordPress Front End Upload v0. 5. 4. 4 arbitrary php file upload-vulnerability warning-the black bar safety net

Title: WordPress Front End Upload v0. 5. 4. 4 Arbitrary PHP File Upload Vulnerability Author: Chris Kellum Home page: http://mondaybynoon.com/ Software address: http://downloads.wordpress.org/plugin/front-end-upload.0.5.4.4.zip Affected version: 0.5.4.4 Defect analysis ===================== Plugi...

WordPress Plugin Front End Upload 0.5.4.4 - Arbitrary .PHP File Upload

WordPress Plugin Front End Upload 0.5.4.4 - Arbitrary .PHP File Upload Exploit Title: WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload Vulnerability Date: 7/23/12 Exploit Author: Chris Kellum Vendor Homepage: http://mondaybynoon.com/ Software Link:...

WordPress Front End Upload 0.5.4.4 Shell Upload

Exploit Title: WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload Vulnerability Date: 7/23/12 Exploit Author: Chris Kellum Vendor Homepage: http://mondaybynoon.com/ Software Link: http://downloads.wordpress.org/plugin/front-end-upload.0.5.4.4.zip Version: 0.5.4.4 =====================...

CVE-2006-2660

Buffer consumption vulnerability in the tempnam function in PHP 5.1.4 and 4.x before 4.4.3 allows local users to bypass restrictions and create PHP files with fixed names in other directories via a pathname argument longer than MAXPATHLEN, which prevents a unique string from being appended to the...

MS:CE2E6FB9-E858-4CCC-B644-F1FA9BCAB0F5

...