Honestly not surprised. Organizations have patch and vulnerability management procedures, people just run shit until they’re prompted to update, and if they git cloned they’ll probably never be prompted.
Or not exposed to the internet. Maybe the owner pulled the repo previously, left their weekend project alone for a bit, then came back to it after all this media attention.
borari@lemmy.dbzer0.com 1 month ago
Honestly not surprised. Organizations have patch and vulnerability management procedures, people just run shit until they’re prompted to update, and if they git cloned they’ll probably never be prompted.
CombatWombatEsq@lemmy.world 1 month ago
frongt@lemmy.zip 1 month ago
Newly detected. They were probably already there, just not scanned.
borari@lemmy.dbzer0.com 1 month ago
Or not exposed to the internet. Maybe the owner pulled the repo previously, left their weekend project alone for a bit, then came back to it after all this media attention.