archive
-
A vulnerability classified as critical has been found in Apache Ant up to 1.9.15/1.10.10. Affected is an unknown function of the component TAR Archive Handler. The manipulation leads to improper handling of length parameter inconsistency. This vulnerability is traded as CVE-2021-36373. It is possible to launch the attack remotely. There is no exploit available. It…
-
A vulnerability, which was classified as critical, has been found in JSZip up to 3.7.1. Affected by this issue is some unknown functionality of the component ZIP Archive Handler. The manipulation leads to path traversal. This vulnerability is handled as CVE-2022-48285. The attack may be launched remotely. There is no exploit available. It is recommended…
-
A vulnerability was found in BusyBox up to 1.37.0. It has been rated as problematic. This issue affects some unknown processing of the component TAR Archive Handler. The manipulation leads to clickjacking. The identification of this vulnerability is CVE-2025-46394. The attack may be initiated remotely. There is no exploit available.
-
A vulnerability classified as critical was found in busybox 1.30.1/1.33.2. This vulnerability affects unknown code of the component CPIO Archive Handler. The manipulation leads to path traversal. This vulnerability was named CVE-2023-39810. An attack has to be approached locally. There is no exploit available.
-
It’s “live-recording the World Wide Web,” according to NPR, with a digital library that includes “hundreds of billions of copies of government websites, news articles and data.” They described the 29-year-old nonprofit Internet Archive as “more relevant than ever.” Every day, about 100 terabytes of material are uploaded to the Internet Archive, or about a…
-
A vulnerability, which was classified as problematic, has been found in CuteNews 0.88/1.3/1.3.1. Affected by this issue is some unknown functionality of the file show_archive.php. The manipulation of the argument archive leads to basic cross site scripting. This vulnerability is handled as CVE-2004-0660. The attack may be launched remotely. Furthermore, there is an exploit available.…
-
A vulnerability classified as critical was found in Avast Antivirus up to 4.7.981. Affected by this vulnerability is an unknown functionality of the file unzoo.c of the component Zoo Archive Handler. The manipulation leads to denial of service. This vulnerability is known as CVE-2007-1669. The attack can be launched remotely. Furthermore, there is an exploit…
-
CVE-2023-32981 | Pipeline Utility Steps Plugin up to 2.15.2 on Jenkins Archive out-of-bounds write
·
A vulnerability has been found in Pipeline Utility Steps Plugin up to 2.15.2 on Jenkins and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Archive Handler. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2023-32981. Access to the local network is required for this attack. There…
-
A vulnerability classified as critical was found in IBM Lotus Notes up to 7.0.1. This vulnerability affects unknown code in the library tarrdr.dll of the component TAR Archive Filename Handler. The manipulation leads to memory corruption. This vulnerability was named CVE-2005-2618. The attack can be initiated remotely. There is no exploit available. It is recommended…
-
A vulnerability classified as critical has been found in IBM Lotus Notes up to 7.0.1. This affects an unknown part in the library kvarcve.dll of the component Archive Preview. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2005-2618. It is possible to initiate the attack remotely. There is no exploit available.…
-
A vulnerability was found in IBM Lotus Notes up to 7.0.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality in the library kvarcve.dll of the component ZIP Archive Handler. The manipulation leads to memory corruption. This vulnerability is known as CVE-2005-2618. The attack can be launched remotely. There is…
-
.lcpl or lcpdf to .pdf can somebody help me! i am trying to download a book from internet archive, but its drm protected (LCPL). they used to be have ASCM encryption (you could easily convert it to pdf format), but they changed it to LCPL format and the conversion to pdf seems impossible. can someone…
-
In this episode, we discuss the significant data breach at the Internet Archive, affecting 33 million users. We also examine the introduction of an AI-integrated toilet camera by Throne, designed for health monitoring by analyzing bodily waste, and the ensuing privacy concerns. We explore these technological advancements alongside other unusual tech innovations, touching upon security…
-
Issue 257: Internet Archive under attack, API Gateways insecure by default, OWASP injection attacks
·
This week, we look at the recent data breach at the Internet Archive and the critical role of API token management. We have a report from Trend Micro detailing security issues with API Gateway deployments, and we look at recently discovered OWASP API vulnerabilities in popular enterprise and open source platforms. Also a quick look…
-
MalBot October 22, 2024, 2:50pm 1 Such an ad, which priced the exfiltrated data archive at $15,000 worth of cryptocurrency, was immediately removed by TAINTU due to Breach Forums users’ lack of seriousness to his claims.
-
The Internet Archive (Archive.org) suffered a second security breach in October 2024, exposing support tickets through unrotated Zendesk API tokens. The organization faces reputational damage and risks to user data.
-
Internet Archive attackers email support users: “Your data is now in the hands of some random guy”
·
Those who hacked the Internet Archive haven’t gone away. Users of the Internet Archive who have submitted helpdesk tickets are reporting replies to the tickets from the hackers themselves.
-
Internet Archive was breached twice in a month Pierluigi Paganini October 21, 2024 The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. The Internet Archive was breached via Zendesk, with users receiving warnings about stolen GitLab tokens due to improper token rotation after repeated alerts.