Aggregator

North Korean Hackers as Recruiters Attacking Developers With 35 New Malicious npm Packages

Cyber Security News
5 months 3 weeks ago

North Korean threat actors have launched a sophisticated supply chain attack campaign, embedding 35 malicious npm packages across 24 compromised accounts to target software developers through an elaborate recruitment deception. The campaign, identified as an extension of the ongoing “Contagious Interview” operation, represents a significant escalation in state-sponsored cyber espionage tactics targeting the open-source software […]

The post North Korean Hackers as Recruiters Attacking Developers With 35 New Malicious npm Packages appeared first on Cyber Security News.

Tushar Subhra Dutta

INC

Dark Feed IO
5 months 3 weeks ago

You must login to view this content

cohenido

CVE-2007-3182 | Calendarix cal_footer.inc.php leftfooter cross site scripting (EDB-30232 / XFDB-35045)

Vuldb Updates
5 months 3 weeks ago
A vulnerability was found in Calendarix. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file cal_footer.inc.php. The manipulation of the argument leftfooter leads to basic cross site scripting. This vulnerability is known as CVE-2007-3182. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-51982 | Printer Service Port 9100 FORMLINES improper validation of syntactic correctness of input (EUVD-2024-54702)

Vuldb Updates
5 months 3 weeks ago
A vulnerability has been found in Brother Industries/FUJIFILM Business Innovation/RICOH Printer and classified as critical. Affected by this vulnerability is an unknown functionality of the component Service Port 9100. The manipulation of the argument FORMLINES leads to improper validation of syntactic correctness of input. This vulnerability is known as CVE-2024-51982. The attack can be launched remotely. There is no exploit available.
vuldb.com

CVE-2024-51981 | Printer WS-Addressing server-side request forgery (EUVD-2024-54701)

Vuldb Updates
5 months 3 weeks ago
A vulnerability was found in Brother Industries/FUJIFILM Business Innovation/RICOH/Toshiba Tec Printer. It has been declared as critical. This vulnerability affects unknown code of the component WS-Addressing. The manipulation leads to server-side request forgery. This vulnerability was named CVE-2024-51981. The attack can be initiated remotely. There is no exploit available.
vuldb.com

CVE-2024-51980 | Printer Web Service server-side request forgery (EUVD-2024-54700)

Vuldb Updates
5 months 3 weeks ago
A vulnerability was found in Brother Industries/FUJIFILM Business Innovation/RICOH/Toshiba Tec Printer. It has been classified as critical. This affects an unknown part of the component Web Service. The manipulation leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2024-51980. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2024-51979 | Printer HTTP Service/HTTPS Service/IPP Service Origin header stack-based overflow (EUVD-2024-54699)

Vuldb Updates
5 months 3 weeks ago
A vulnerability was found in Brother Industries/FUJIFILM Business Innovation/RICOH Printer. It has been rated as critical. This issue affects some unknown processing of the component HTTP Service/HTTPS Service/IPP Service. The manipulation of the argument Origin header leads to stack-based buffer overflow. The identification of this vulnerability is CVE-2024-51979. The attack may be initiated remotely. There is no exploit available.
vuldb.com

Managed ad