Tag: Code Injection

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

The GlassWorm malware campaign is being used to fuel an ongoing attack that leverages the stolen GitHub tokens to inject malware into …

16 March 2026

Attacks, Code Injection, Malware, Stolen, Tokens
NVIDIA NeMo Flaw Enables Code Injection and Privilege Escalation Attacks

NVIDIA has released critical security patches addressing two high-severity vulnerabilities in its NeMo Framework that could allow attackers …

14 November 2025

Attacks, Code Injection, Cyber Security News, Flaws, Privilege Escalation
ISPConfig Vulnerability Allows Privilege Escalation to Superadmin and PHP Code Injection Exploit

A critical security vulnerability has been identified in ISPConfig version 3.2.12p1, a widely used open-source web hosting control panel. …

10 June 2025

Code Injection, Cyber Security News, PHP, Privilege Escalation, Programming
Microsoft April 2025 Patch Tuesday: Fixing 121 Vulnerabilities, Including a Critical Zero-Day

Microsoft has rolled out its April 2025 Patch Tuesday update, addressing 121 security vulnerabilities across its software ecosystem. This …

8 April 2025

Code Injection, Critical, SAP, Security Pro, Vulnerability
Ivanti Released Security Update With The Fixes for Critical Endpoint Manager RCE Vulnerabilities

Ivanti, a prominent enterprise software provider, has issued an urgent security advisory today addressing multiple vulnerabilities in its …

8 April 2025

Code Injection, Critical, SAP, Security Pro, Vulnerability
Exploits and vulnerabilities in Q4 2024

This report provides statistics on vulnerabilities and exploits and discusses the most frequently exploited vulnerabilities in Q4 …

26 February 2025

APT, Code Injection, CVE, Vulnerability reports
Malicious NuGet Campaign Tricking Developers To Inject Malicious Code

Hackers often target NuGet as it’s a popular package manager for .NET, which developers widely use to share and consume reusable code. …

15 July 2024

Campaigns, Code Injection, Cyber Attack, Cyber Security News, Developers
60 New Malicious Packages Uncovered in NuGet Supply Chain Attack

Threat actors have been observed publishing a new wave of malicious packages to the NuGet package manager as part of an ongoing campaign …

11 July 2024

Code Injection, Malicious, Malware, New, NuGet
QR code SQL injection and other vulnerabilities in a popular biometric terminal

The report analyzes the security properties of a popular biometric access control terminal made by ZkTeco and describes vulnerabilities …

11 June 2024

Biometric Authentication, Buffer Overflows, Code Injection, Research
MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries

Several public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a new …

22 January 2024

Abandoned, Apache Maven, Attacks, Code Injection, Cyber Threats
TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

Continuous integration and continuous delivery (CI/CD) misconfigurations discovered in the open-source TensorFlow machine learning …

18 January 2024

Attacks, CI/CD, Code Injection, Exposed, Flaws
Opera MyFlaw Bug Could Let Hackers Run ANY File on Your Mac or Windows

Cybersecurity researchers have disclosed a security flaw in the Opera web browser for Microsoft Windows and Apple macOS that could be …

15 January 2024

Browser Extensions, Bug, Code Injection, Content Security Policy, Cyber Threats

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/code-injection/page/2","queryId":2}

●●●