Honestly not surprised. Organizations have patch and vulnerability management procedures, people just run shit until they’re prompted to update, and if they git cloned they’ll probably never be prompted.
Or not exposed to the internet. Maybe the owner pulled the repo previously, left their weekend project alone for a bit, then came back to it after all this media attention.
borari@lemmy.dbzer0.com 3 weeks ago
Honestly not surprised. Organizations have patch and vulnerability management procedures, people just run shit until they’re prompted to update, and if they git cloned they’ll probably never be prompted.
CombatWombatEsq@lemmy.world 3 weeks ago
frongt@lemmy.zip 3 weeks ago
Newly detected. They were probably already there, just not scanned.
borari@lemmy.dbzer0.com 3 weeks ago
Or not exposed to the internet. Maybe the owner pulled the repo previously, left their weekend project alone for a bit, then came back to it after all this media attention.