43 matches found
CVE-2026-15982
creationtimestamp| type| source ---|---|--- 2026-07-17 05:50:05+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mqt2kgy3tm2y 2026-07-17 06:00:28+00:00| seen| https://infosec.exchange/users/offseq/statuses/116933789451136259 2026-07-17 06:00:30+00:00| seen|...
Exploit for Use After Free in Adobe Flash_Player
CobaltStrike-Toolset Aggressor Script, Kit, Malleable C2 Profiles, External C2 and so on - Kits - ResourceKit - ExploitKit - Aggressor Script - chromedumpmimikatz.cna - nopowershell - SMBexecpsh Further Resources nopowershell smbexecpsh.cna CVE-2018-15982...
CVE-2019-15982
creationtimestamp| type| source ---|---|--- 2024-03-19 15:16:54+00:00| seen| https://t.me/ctinow/211582...
Mageia: Security Advisory (MGASA-2018-0478)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Exploit for Use After Free in Adobe Flash_Player
This is a Python script, CVE-2018-15982EXP.py, which appears to be an exploit for the CVE-2018-15982 vulnerability. The script is designed to exploit a vulnerability in a specific product or service, likely a web application, to achieve remote code execution. The script starts with a logo and the...
Debian DSA-4824-1 : chromium - security update
Multiple security issues were discovered in the Chromium web browser, which could result in the execution of arbitrary code, denial of service or information disclosure. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...
Threat profile: Egregor ransomware is making a name for itself
What is Egregor? Egregor ransomware is a relatively new ransomware first spotted in September 2020 that seems intent on making its way to the top right now. Egregor is considered a variant of Ransom.Sekhmet based on similarities in obfuscation, API-calls, and the ransom note. As weve reported in...
CVE-2020-15982
Inappropriate implementation in cache in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...
[ASA-202010-1] chromium: multiple issues
Arch Linux Security Advisory ASA-202010-1 ========================================= Severity: Critical Date : 2020-10-10 CVE-ID : CVE-2020-6557 CVE-2020-15967 CVE-2020-15968 CVE-2020-15969 CVE-2020-15970 CVE-2020-15971 CVE-2020-15972 CVE-2020-15973 CVE-2020-15974 CVE-2020-15975 CVE-2020-15976...
FreeBSD : chromium -- multiple vulnerabilities (64988354-0889-11eb-a01b-e09467587c17)
Chrome releases reports : This release contains 35 security fixes, including : - 1127322 Critical CVE-2020-15967: Use after free in payments. Reported by Man Yue Mo of GitHub Security Lab on 2020-09-11 - 1126424 High CVE-2020-15968: Use after free in Blink. Reported by Anonymous on 2020-09-09 -...
Google Chrome < 86.0.4240.75 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 86.0.4240.75. It is, therefore, affected by multiple vulnerabilities as referenced in the 202010stable-channel-update-for-desktop advisory. - Insufficient policy enforcement in networking in Google Chrome prior to...
Geniusocean News SQL Injection (CVE-2017-15981; CVE-2017-15982)
An SQL injection vulnerability exists in Geniusocean News. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2019-15982
Cisco DCNM
Say hello to Lord Exploit Kit
Just as we had wrapped up our summer review of exploit kits, a new player entered the scene. Lord EK, as it is calling itself, was caught by Virus Bulletin's Adrian Luca while replaying malvertising chains. In this blog post, we do a quick review of this exploit kit based on what we have collecte...
Exploit kits: spring 2019 review
Exploit kit activity remains fairly unchanged since our last winter review in terms of active distribution campaigns. But this spring edition will feature a new exploit kit and another atypical EK, in that it specifically goes after routers. The main driver behind these drive-by download attacks...
Exploit kits: winter 2019 review
Active malvertising campaigns in December and the new year have kept exploit kit activity from hibernating in winter 2019. We mostly observed Fallout and RIG with the occasional, limited GrandSoft appearance for wider geo-targeting. In addition, narrowly-focused exploit kits such as Magnitude,...
Fallout EK Retools for a Fresh New 2019 Look
A new version of the Fallout exploit kit EK has emerged, featuring new exploits and fresh payloads, including the GandCrab ransomware. The development shows that EKs have a lot of life yet left in them, researchers say. The Fallout EK generally finds its victims by way of malvertising campaigns,...
CVE-2018-15982
Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution...
Immunity Canvas: ADOBE_FLASH_METADATA_UAF
Name| adobeflashmetadatauaf ---|--- CVE| CVE-2018-15982 Exploit Pack| CANVAS Description| adobeflashmetadatauaf Notes| CVE Name: CVE-2018-15982 VENDOR: Adobe NOTES: In the package com.adobe.tvsdk.mediacore.metadata the setObject method does not set a reference to the key String Object so if we...
CVE-2018-15982
Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution...