Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WesHacks code includes links to Leostop tracking spyware infested files
Vulnerability Description
The WesHacks GitHub repository provides the official Hackathon competition website source code for the Muweilah Wesgreen Hackathon. The page `schedule.html` before 17 November 2024 or commit 93dfb83 contains links to `Leostop`, a site that hosts a malicious injected JavaScript file that occurs when bootstrap is run as well as jquery. `Leostop` may be a tracking malware and creates 2 JavaScript files, but little else is known about it. The WesHacks website remove all references to `Leostop` as of 17 November 2024.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N
Vulnerability Type
下载代码缺少完整性检查
Vulnerability Title
WesHacks 安全漏洞
Vulnerability Description
WesHacks是Shahm Najeeb个人开发者的一个黑客比赛网站。 WesHacks 17/11/2024之前版本存在安全漏洞,该漏洞源于该网站托管了恶意注入的JavaScript文件。
CVSS Information
N/A
Vulnerability Type
N/A