2651 matches found
CVE-2023-51490
CVE-2023-51490 affects the WordPress Defender Security plugin by WPMU DEV, impacting Defender Security – Malware Scanner, Login Security & Firewall up to version 4.1.0. Root cause: Exposure of sensitive information to an unauthorized actor. The CVE is marked as patched in the sources. Remediation...
WordPress Plugin Defender Security Log Information Disclosure Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A log information disclosure vulnerability...
PT-2024-14149 · Unknown · Defender Security – Malware Scanner
Name of the Vulnerable Software and Affected Versions: Defender Security – Malware Scanner, Login Security & Firewall versions through 4.1.0 Description: The issue is related to the exposure of sensitive information to an unauthorized actor. This is a problem where sensitive data is made availabl...
PPLBlade - Protected Process Dumper Tool
Protected Process Dumper Tool that support obfuscating memory dump and transferring it on remote workstations without dropping it onto the disk. Key functionalities : 1. Bypassing PPL protection 2. Obfuscating memory dump files to evade Defender signature-based detection mechanisms 3. Uploading...
Defender Security < 4.2.0 - Sensitive Information Exposure via Log File
Description The Defender Security – Malware Scanner, Login Security & Firewall plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.1.0 via the plugin's log file. This makes it possible for unauthenticated attackers to extract sensitive data...
The vulnerability of the Microsoft Defender software arises from insufficient validation of input data, allowing a perpetrator to trigger a service failure.
The vulnerability of the Microsoft Defender software exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures using specially crafted input data...
Microsoft Windows PowerShell Code Execution / Event Log Bypass Vulnerabilities
Prior work from this researcher disclosed how PowerShell executes unintended files or BASE64 code when processing specially crafted filenames. This research builds on their PSTrojanFile work, adding a PS command line single quote bypass and PS event logging failure. On Windows CL tab, completing ...
WordPress Defender Security Plugin <= 4.1.0 is vulnerable to Sensitive Data Exposure
Software Defender Security Type Plugin Vulnerable versions = 4.1.0 Fixed in 4.2.0 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2023-51490 Patch priority Low CVSS severity Low 5.3 Developer WPMU DEV PSID 6b8b4abdceeb Credits Joshua Chan...
PipeViewer - A Tool That Shows Detailed Information About Named Pipes In Windows
A GUI tool for viewing Windows Named Pipes and searching for insecure permissions. The tool was published as part of a research about Docker named pipes: "Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 1" "Breaking Docker Named Pipes SYSTEMatically: Docker...
Nim-Shell - Reverse Shell That Can Bypass Windows Defender Detection
Reverse shell that can bypass windows defender detection $ apt install nim Compilation nim c -d:mingw --app:gui nimshell.nim Change the IP address and port number you want to listen to in the nimshell.nim file according to your device. and listen $ nc -nvlp 4444 Download Nim-Shell...
Security Updates for Windows Defender (December 2023)
The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 4.18.23110.3. It is, therefore, affected by a denial of service vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application...
Microsoft Windows Defender Antimalware Platform DoS Vulnerability (Dec 2023)
This host is missing a critical security update according to Microsoft Security Updates released for Microsoft Windows Defender Protection Engine dated 13-12-2023 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
CVE-2023-36006
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...
CVE-2023-36010
Microsoft Defender Denial of Service Vulnerability...
CVE-2023-36010
Microsoft Defender Denial of Service Vulnerability...
CVE-2023-36010
Microsoft Defender Denial of Service Vulnerability...
Denial of service
Microsoft Defender Denial of Service Vulnerability...
CVE-2023-36010 Microsoft Defender Denial of Service Vulnerability
...
CVE-2023-36010
The CVE-2023-36010 entry corresponds to a DoS vulnerability in the Malware Protection Engine (Windows Defender) used by Microsoft Defender. Public details in connected docs indicate the affected component is the Malware Protection Engine prior to version 4.18.23110.3, which can be exploited to ca...
Threat actors misuse OAuth applications to automate financially driven attacks
Threat actors are misusing OAuth applications as an automation tool in financially motivated attacks. OAuth is an open standard for token-based authentication and authorization that enables applications to get access to data and resources based on permissions set by a user. Threat actors compromi...