Hancom NEO versions 9.6.1.5183 and earlier have a buffer Overflow vulnerability that leads remote attackers to execute arbitrary commands when performing the hyperlink Attributes in...
9.8CVSS
9.8AI Score
0.003EPSS
Hancom NEO versions 9.6.1.5183 and earlier have a buffer Overflow vulnerability that leads remote attackers to execute arbitrary commands when performing the hyperlink Attributes in...
9.9AI Score
0.003EPSS
Security advisory YSA-2018-01 - Yubico
Oscar Mira and Roi Martin from the Schibsted security team informed us of a security issue in the OATH (Initiative for Open Authentication) applet on the YubiKey NEO. The YubiKey OATH applet is used to generate time-based one-time password (TOTP) and HMAC-based one-time password (HOTP) codes that.....
7.5AI Score
neo-net.ru Open Redirect vulnerability
Vulnerable URL: http://www.neo-net.ru/redirect.php?url=openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.12.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No ...
6.9AI Score
Summary An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under...
8.2AI Score
0.001EPSS
Neo-Nazi DailyStormer Booted Off By Austrian Domain Registrar
By Carolina Andrew Anglin, the administrator of the neo-nazi website DailyStormer, has This is a post from HackRead.com Read the original post: Neo-Nazi DailyStormer Booted Off By Austrian Domain...
7AI Score
Security update for the Linux Kernel (important)
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: CVE-2017-7482: Several missing length checks ticket decode allowing for information leak or potentially code execution (bsc#1046107). CVE-2016-10277:...
3.3AI Score
0.002EPSS
Security update for the Linux Kernel (important)
The SUSE Linux Enterprise 11 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: CVE-2014-9922: The eCryptfs subsystem in the Linux kernel allowed local users to gain privileges via a large filesystem stack that includes an ...
3.9AI Score
0.047EPSS
China Bans Fundraising Through Initial Coin Offering (ICO)
China's central bank today announced an immediate ban on all ICO—Initial Coin Offering—fundraising, to prevent fraud and illegal fundraising. ICO is the hottest new thing in the blockchain world, which is an alternative to crowdfunding that lets a firm raise funding from multiple sources. The...
6.9AI Score
DailyStormer comes back with Albanian domain; gets booted off
By Carolina DailyStormer, the neo-nazi and racist website is having a difficult This is a post from HackRead.com Read the original post: DailyStormer comes back with Albanian domain; gets booted...
7AI Score
Malware vaccination tricks: blue pills or red pills
First, let me explain what I mean by malware vaccination tricks. Most of you will have heard about some of these. Vaccination tricks are in fact techniques that use safety checks done by malware against that same malware. The malware checks for the presence of certain files or registry keys as a...
6.8AI Score
Russia boots off DailyStormer and CloudFlare removes DDoS protection
By Waqas It looks like the racist and neo-nazi website DailyStormer has no This is a post from HackRead.com Read the original post: Russia boots off DailyStormer and CloudFlare removes DDoS...
7AI Score
Neo Nazi site DailyStormer moves to dark web that’s as good as dead
By Waqas On August 14th it was reported that Internet domain registrar and This is a post from HackRead.com Read the original post: Neo Nazi site DailyStormer moves to dark web that’s as good as...
6.9AI Score
libzip is a C library for reading, creating, and modifying zip archives. A partial list of projects using libzip include: Plex Home Theater, MySQL Workbench, ckmame, fuse-zip, lua-zip, php zip extension, zipruby, Endeavour2, FreeDink, DeaDBeeF (vfs_zip plugin), OpenLierox, ebook-tools, PDF Expert,....
9.8CVSS
8.9AI Score
0.002EPSS
GoDaddy bans neo-nazi DailyStormer website
By Waqas GoDaddy Inc. Internet domain registrar and web hosting giant have This is a post from HackRead.com Read the original post: GoDaddy bans neo-nazi DailyStormer...
7AI Score
Security firms Bitdefender and Checkmarx are released report, security researcher at a plurality of conventional smart cameras found in a remote intrusion vulnerability, relates to the VStarcam, the Loftek, as well as Neo IP camera. One of Neo IP camera is Shenzhen, China manufacturer beautiful...
0.2AI Score
Remote Exploitation of the NeoCoolcam IP Cameras and Gateway
Foreword The Internet of Connected Things has become a massive phenomenon during the past few years and will continue to grow at an incredible pace. More than 26 billion smart devices will be on the market by 2020, Gartner estimates. We’re looking at an explosive growth, as IoT opportunities...
8.8AI Score
Fedora 26 : libmtp (2017-69fdb38f3e)
libmtp 1.1.13 ============= Christophe Vu-Brugier (1) : added GoPro HERO5 Black Emeric Grange (2) : added GoPro HERO5 Session rename F5321 into XPeria X Compact Gaute Hope (2) : add GoPro Hero+ add mtp-detect for GoPro Hero+ Jerry Zhang (1) : Update Google device strings, add...
6.8CVSS
-0.9AI Score
0.009EPSS
Fedora 24 : libmtp (2017-d26266eb32)
libmtp 1.1.13 ============= Christophe Vu-Brugier (1) : added GoPro HERO5 Black Emeric Grange (2) : added GoPro HERO5 Session rename F5321 into XPeria X Compact Gaute Hope (2) : add GoPro Hero+ add mtp-detect for GoPro Hero+ Jerry Zhang (1) : Update Google device strings, add...
6.8CVSS
-0.9AI Score
0.009EPSS
goanoriant.org XSS vulnerability
Vulnerable URL: http://goanoriant.org/wp-content/plugins/maxigos_wp_plugin/_maxigos/_sample/neo-classic/neo-classic.php?mxL=%22/%3E%3CsvG/onLoad=alert(/OPENBUGBOUNTY/)%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 01.10.2017 Vulnerability type:| XSS Vulnerability...
6.2AI Score
Fedora 25 : libmtp (2017-4c57da6642)
libmtp 1.1.13 ============= Christophe Vu-Brugier (1) : added GoPro HERO5 Black Emeric Grange (2) : added GoPro HERO5 Session rename F5321 into XPeria X Compact Gaute Hope (2) : add GoPro Hero+ add mtp-detect for GoPro Hero+ Jerry Zhang (1) : Update Google device strings, add...
6.8CVSS
-0.9AI Score
0.009EPSS
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the...
8.8CVSS
7.9AI Score
0.001EPSS
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the...
7.8CVSS
7.9AI Score
0.001EPSS
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the...
7.8CVSS
9AI Score
0.001EPSS
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the...
8.8CVSS
9AI Score
0.001EPSS
Hancom Thinkfree NEO Hangul Word Processor HWPTAG_TAB_DEF Tab Count Code Execution Vulnerability
Summary An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under...
8.8CVSS
-0.1AI Score
0.001EPSS
CyanogenMod 12 Stagefright (.MP4 tx3g Integer Overflow) Remote Code Execution Exploit
Exploit for windows platform in category remote...
7.1AI Score
0.6AI Score
The Wireless IP Camera (P2P) WIFICAM Multiple vulnerabilities
Product Description The Wireless IP Camera (P2P) WIFICAM is a Chinese web camera which allows to stream remotely. Vulnerabilities Summary The Wireless IP Camera (P2) WIFICAM is a camera overall badly designed with a lot of vulnerabilities. This camera is very similar to a lot of other Chinese...
9.9AI Score
0.011EPSS
7.4AI Score
0.2AI Score
6.3AI Score
opera-guide.ch XSS vulnerability
Vulnerable URL: http://opera-guide.ch/index.php?uilang=en%22%3E%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 878604 VIP website.....
6.3AI Score
tasteofsouthflorida.com XSS vulnerability
Vulnerable URL: http://tasteofsouthflorida.com/cgi-bin/tseekdir.cgi?location=Root-Miami,045Dade_Restaurants-South_Beach%27%3E%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS...
6.3AI Score
maquis-art.com XSS vulnerability
Vulnerable URL: http://maquis-art.com/shop/index.php?page=1&objet;_recherche=/%22%3E%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 13:57 GMT Vulnerability type:| XSS Vulnerability status:|...
6.3AI Score
topup.orange.com XSS vulnerability
Vulnerable URL: https://topup.orange.com/?s=%3Cscript%3Ealert%28%27OPENBUGBOUNTY%27%29%3C%2Fscript%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Coordinated...
6.3AI Score
food-com.com XSS vulnerability
Vulnerable URL: http://www.food-com.com/about.php?id=%3E%3C/SCRIPT%3E%22%3E%27%3E%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 13:49 GMT Vulnerability type:| XSS Vulnerability status:|...
6.3AI Score
grameenphone.com XSS vulnerability
Vulnerable URL: https://www.grameenphone.com/bn/search/node/%22%3E%3Cscript%3Ealert('OPENBUGBOUNTY')%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6524 VIP website...
6.3AI Score
Adobe ColdFusion < 11 Update 10 - XML external entity injection
Discovered by: Dawid Golunski http://legalhackers.com dawid (at) legalhackers.com APSB16-30 Release date: 31.08.2016 I. VULNERABILITY Adobe ColdFusion <= 11 XML External Entity (XXE) Injection II. BACKGROUND "Adobe ColdFusion 11 Enterprise Edition offers a single platform to rapidly build and...
9.3AI Score
0.805EPSS
8.6CVSS
8.6AI Score
EPSS
0.6AI Score
0.805EPSS
Adobe ColdFusion 11 Update 10 - XML External Entity Injection
Adobe ColdFusion 11 Update 10 - XML External Entity...
8.6CVSS
0.3AI Score
0.805EPSS
Adobe ColdFusion < 11 Update 10 - XML External Entity Injection
Exploit for php platform in category web...
0.3AI Score
0.805EPSS
Patched ColdFusion Flaw Exposes Applications to Attack
An Adobe ColdFusion vulnerability addressed Tuesday in a hotfix pushed to users put applications developed on the platform at risk to a number of serious issues. Researcher Dawid Golunski of Legal Hackers today revealed details on the flaw, which he privately disclosed to Adobe, as well as a...
0.9AI Score
0.805EPSS
babymall.co.il XSS vulnerability
Vulnerable URL: http://www.babymall.co.il/Error.asp?msg=%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 26620315 VIP website...
6.3AI Score
Vulnerable URL: http://www.piclist.com/techref/error.asp?error=%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at 08.05.2017 Latest check for patch:| 08.05.2017 20:27 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...
6.2AI Score
italianshop.co.il XSS vulnerability
Vulnerable URL: http://www.italianshop.co.il/Error.asp?msg=%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 20436634 VIP website...
6.3AI Score
drfood.co.il XSS vulnerability
Vulnerable URL: http://www.drfood.co.il/Error.asp?msg=%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 19773109 VIP website...
6.3AI Score
timecenter.co.il XSS vulnerability
Vulnerable URL: http://www.timecenter.co.il/Error.asp?msg=%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4423195 VIP website...
6.3AI Score
konimolam.co.il XSS vulnerability
Vulnerable URL: http://www.konimolam.co.il/error.asp?msg=%3Cscript%3Ealert(%27OPENBUGBOUNTY%27)%3C/script%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 10349397 VIP website...
6.3AI Score