It all starts with a user that visits a malicious website using the browser. As it turns out, that mechanism can be exploited by any website to run arbitrary native code while the PlingStore app is open in the background. The concerning fact is that this unpatched vulnerability in Linux Pling can allow for a supply-chain attack XSS worm in which a JavaScript payload could be exploited by an adversary to upload versions of software that are containing trojans and also to be able to tweak the metadata of a victim’s listing in order to include and propagate the attack code.Īs the application can install other applications, it has another built-in mechanism to execute code on the level. This specific unpatched vulnerability in Linux Pling is stemming from the manner in which the store’s product listings page parses HTML or embedded media fields, therefore potentially allowing an attacker to inject malicious JavaScript code that could result in arbitrary code execution. PlingStore is an Installer and Content Management App for OCS-compatible websites like, ,, that allows users to download, install and apply desktop themes, icon themes, wallpapers, or mouse cursors directly under various desktop environments using the “Install”-button. Some of the Pling-based app stores impacted by the flaw are, ,, , and. The native PlingStore application is affected by an RCE vulnerability, which can be triggered from any website while the app is running. Linux marketplaces that are based on the Pling platform are vulnerable to a wormable with the potential for a supply-chain attack. Share your thoughts with us in the comment section.The newly discovered unpatched vulnerability in Linux Pling is affecting Pling-based free and open-source software (FOSS) marketplaces for the Linux platform and has the potential to be abused in order to stage supply-chain attacks and achieve remote code execution (RCE). What distro/theme combination do you use? In this post, we’ve seen some amazing themes and how to apply them on the most If you would like to learn about other popular XFCE themes and further XFCE XFCE Ant (Dracula) + VimixĪnt is one of the most popular Linux themes and comes in four variants: All themes canīe installed directly from Global Theme section in the Settings app. Tints play well on modern & simple Plasma desktop.Īs a matter of fact, you don’t even need Pling on Plasma desktop. Use GNOME Tweaks to apply these themes to your GNOME desktop. McMojave comes in the following variants: (Settings →ĭock → Position on the screen → Select bottom) You install the theme, you can move your Ubuntu dock to the bottom. If you are a fan of macOS desktop’s look, then GNOME To use Flat Remix Blue if you like it as a desktop theme. I find it more appealing than Flat Remix Blue, but feel free Is Chrome OS which you can install using Linux Mint settings (Settings → Appearane → Add/Remove → Install Chrome OS). I use Flat Remix Blue for window borders, icons & controls. Flat Remix is available in multiple variants:Įach of these variants has its subvariants as well: Then you just need to enable that theme in the System Settings. Whatever you wish! After selecting the desired item, click install which willĭownload the files and place them in the proper directory. Once you have opened Pling, feel free to search for some themes, plugins or Then double-click it and Pling Store should launch. Make it executable: right-clicking it → Properties → Permission → Make it executable. I recommend you to download the AppImage. It allows you to find and install all sorts of Linux desktop Pling is an app that serves as a software centre for Linux desktopĬustomization. SUBSCRIBE for more Linux Videos Pling Storeīefore we start, make sure to install Pling if you don’t have it already.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |