CVE-2020-37095

Cyberoam Authentication Client 2.1.2.7 contains a buffer overflow vulnerability that allows remote attackers to execute arbitrary code by overwriting Structured Exception Handler SEH memory. Attackers can craft a malicious input in the 'Cyberoam Server Address' field to trigger a bind TCP shell o...

CVE-2020-37095

Cyberoam Authentication Client 2.1.2.7 contains a buffer overflow vulnerability that allows remote attackers to execute arbitrary code by overwriting Structured Exception Handler SEH memory. Attackers can craft a malicious input in the 'Cyberoam Server Address' field to trigger a bind TCP shell o...

CVE-2020-37095

The connected PTsecurity entry confirms CVE-2020-37095 affects Cyberoam Authentication Client 2.1.2.7 and describes a buffer overflow that overwrites Structured Exception Handler (SEH) memory. An attacker can supply a crafted value in the Cyberoam Server Address field to trigger a bind TCP shell ...

CVE-2020-37095 Cyberoam Authentication Client 2.1.2.7 - Buffer Overflow (SEH)

Cyberoam Authentication Client 2.1.2.7 contains a buffer overflow vulnerability that allows remote attackers to execute arbitrary code by overwriting Structured Exception Handler SEH memory. Attackers can craft a malicious input in the 'Cyberoam Server Address' field to trigger a bind TCP shell o...

CVE-2020-37095 Cyberoam Authentication Client 2.1.2.7 - Buffer Overflow (SEH)

Cyberoam Authentication Client 2.1.2.7 contains a buffer overflow vulnerability that allows remote attackers to execute arbitrary code by overwriting Structured Exception Handler SEH memory. Attackers can craft a malicious input in the 'Cyberoam Server Address' field to trigger a bind TCP shell o...

CVE-2026-1337

creationtimestamp| type| source ---|---|--- 2026-02-06 15:31:03+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-xr72-g735-4vwp...

PT-2026-6813

Name of the Vulnerable Software and Affected Versions Cyberoam Authentication Client version 2.1.2.7 Description The Cyberoam Authentication Client software contains a buffer overflow issue that enables remote attackers to run code without permission by overwriting Structured Exception Handler SE...

EUVD-2007-2484

Malware in sbrugna...

Exploit for CVE-2025-1337

PoC para CVE-2025-1337 Prueba de concepto para la vulnerabili...

GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001

creationtimestamp| type| source ---|---|--- 2025-08-21 07:24:15+00:00| seen| https://bsky.app/profile/todb2.hugesuccess.org/post/3lwoysvrmg422 2025-08-21 07:24:39+00:00| seen| https://gist.github.com/adulau/62da4d877a0c9be284ade25a22f9440c 2025-08-23 08:36:34+00:00| seen|...

Strapi allows Server-Side Request Forgery in Webhook function

Description In Strapi latest version, at function Settings - Webhooks, the application allows us to input a URL in order to create a Webook connection. However, we can input into this field the local domains such as localhost, 127.0.0.1, 0.0.0.0,.... in order to make the Application fetching into...

CVE-2024-1337

The SKT Page Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'saveSktbuilderPageData' function in all versions up to, and including, 4.1. This makes it possible for authenticated attackers, with subscriber access and above, ...

CVE-2022-1337

The image proxy component in Mattermost version 6.4.1 and earlier allocates memory for multiple copies of a proxied image, which allows an authenticated attacker to crash the server via links to very large image files...

Linux Distros Unpatched Vulnerability : CVE-2014-1337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 6.1.4 and 7.x before 7.0.4, allows remote attackers to execute arbitrary code or cause a denial of service memory...

CVE-2013-1337

creationtimestamp| type| source ---|---|--- 2025-02-18 15:34:33+00:00| seen| https://gist.github.com/jpmartins-ca/4200d476e327a22a046f19199e252871...

CVE-2025-1337

A vulnerability was found in Eastnets PaymentSafe 2.5.26.0. It has been classified as problematic. This affects an unknown part of the component BIC Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 2.5.27.0 is able to...

CVE-2025-1337

A vulnerability was found in Eastnets PaymentSafe 2.5.26.0. It has been classified as problematic. This affects an unknown part of the component BIC Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 2.5.27.0 is able to...

CVE-2025-1337 Eastnets PaymentSafe BIC Search cross site scripting

A vulnerability was found in Eastnets PaymentSafe 2.5.26.0. It has been classified as problematic. This affects an unknown part of the component BIC Search. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 2.5.27.0 is able to...

CVE-2025-1337

CVE-2025-1337 affects Eastnets PaymentSafe 2.5.26.0, specifically the BIC Search component. The documentation describes a cross-site scripting vulnerability that can be triggered remotely. The root cause is an XSS issue in the BIC Search area; exploitation details are limited to the description, ...

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled , English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. An investigation into the history of these communities shows their apparent...