Lucene search
K

633 matches found

ThreatPost
ThreatPost
added 2012/08/30 4:14 p.m.44 views

Use of Java Zero-Day Flaws Tied to Nitro Attack Crew

Researchers say that one of the attack groups using the two new Java zero-day vulnerabilities is the same group that was behind an earlier targeted attack campaign from 2011. That group was traced back to China and was essentially running a spear-phishing campaign, but now the crew, known as Nitr...

10CVSS0.3AI score0.98536EPSS
Exploits10References8
Tenable Nessus
Tenable Nessus
added 2012/06/20 12:0 a.m.11 views

Nitro PDF Application Detection

Binary data 6879.prm...

7.3AI score
Exploits0References1
The Hacker News
The Hacker News
added 2012/05/11 7:44 p.m.10 views

Human Rights organisation website Serves Gh0st RAT Trojan

Human Rights organisation website Serves Gh0st RAT Trojan According to the company's Security Labs blog, Amnesty International's United Kingdom website was compromised and hosting the potent Gh0st RAT Trojan earlier this week. Malicious Java code was planted on the site in a bid to push the Gh0st...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2012/03/21 6:31 p.m.97 views

New Trojan For Mac Used In Attacks On Tibetan NGOs

The security firm Alienvault reports that its own research on phishing attacks against non governmental organizations supporting the Tibetan Government in Exile is now being used as bait in a new round of phishing attacks on those same NGOs. The firm warned the public on Monday about a round of...

10CVSS9.8AI score0.96714EPSS
Exploits13References9
The Hacker News
The Hacker News
added 2012/03/14 9:54 p.m.36 views

Chinese Trojans Gh0stRAT used to attack pro-Tibet organisations

Chinese Trojans Gh0stRAT used to attack pro-Tibet organisations AlienVault has discovered a range of spear phishing attacks taking place against a number of Tibetan organizations apparently from Chinese attackers. The security firm believes that the attacks are originating from the same Chinese...

9.3CVSS7.7AI score0.89497EPSS
Exploits14
ThreatPost
ThreatPost
added 2011/11/01 4:23 p.m.9 views

Symantec Traces Attacks on Chemical Industry To 20 Year Old Chinese Hacker-For-Hire

A report from Symantec Corp. details a roving campaign of intellectual property theft controlled by a 20 year-old hacker for hire that relied on phishing e-mail, some old malware and command and control operations based in China. The company on Tuesday unveiled research on the targeted attacks,...

0.7AI score
Exploits0References3
Exploit DB
Exploit DB
added 2011/02/28 12:0 a.m.23 views

Nitro PDF Reader 1.4.0 - Heap Memory Corruption (PoC)

Nitro PDF Reader 1.4.0 Remote Heap Memory Corruption / DoS PoC Vendor: Nitro PDF, Inc., Nitro PDF Pty Ltd. Product web page: http://www.nitroreader.com Affected version: 1.4.0.11 Summary: Nitro PDF Reader, free, fast, powerfull and secure. Create PDF files, comment and review, save PDF forms,...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/02/28 12:0 a.m.21 views

Nitro PDF Reader 1.4.0 - Heap Memory Corruption (PoC)

Nitro PDF Reader 1.4.0 - Heap Memory Corruption PoC Nitro PDF Reader 1.4.0 Remote Heap Memory Corruption / DoS PoC Vendor: Nitro PDF, Inc., Nitro PDF Pty Ltd. Product web page: http://www.nitroreader.com Affected version: 1.4.0.11 Summary: Nitro PDF Reader, free, fast, powerfull and secure. Creat...

0.5AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2011/02/26 12:0 a.m.21 views

Nitro PDF Reader 1.4.0 Remote Heap Memory Corruption / DoS PoC

Summary Nitro PDF Reader, free, fast, powerfull and secure. Create PDF files, comment and review, save PDF forms, extract text and images, type text directly onto the page, and more. Description The program suffers from a heap corruption vulnerability which can be exploited by malicious people to...

5.8AI score
Exploits0
NVD
NVD
added 2010/06/02 7:30 p.m.11 views

CVE-2010-2141

SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action...

7.5CVSS8.3AI score0.02045EPSS
Exploits1References4
Prion
Prion
added 2010/06/02 7:30 p.m.12 views

Sql injection

SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action...

7.5CVSS9.1AI score0.02045EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/06/02 7:0 p.m.16 views

CVE-2010-2141

SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action...

8.3AI score0.02045EPSS
Exploits1References4
CVE
CVE
added 2010/06/02 7:0 p.m.45 views

CVE-2010-2141

CVE-2010-2141 affects the NITRO Web Gallery. The vulnerability is an SQL injection in index.php, exploitable via the PictureId parameter in an open action, allowing remote attackers to run arbitrary SQL commands. The issue is documented across multiple sources (NVD/NVD mirrors, CVE records, and a...

7.5CVSS8.7AI score0.02045EPSS
Exploits1References4Affected Software1
Exploit DB
Exploit DB
added 2010/05/25 12:0 a.m.49 views

Nitro Web Gallery - SQL Injection

=============================================== NITRO Web Gallery SQL Injection Vulnerability =============================================== .----..--.--.| |--..-----..----.| |.-----..-----. | || | || || -|| || || || | ||| ||||||| ||||| | || || NITRO Web Gallery SQL Injection Vulnerability...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2008/06/23 5:41 p.m.3 views

CVE-2008-2817

SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...

7.5CVSS6.4AI score0.00967EPSS
Exploits1References4
NVD
NVD
added 2008/06/23 5:41 p.m.12 views

CVE-2008-2817

SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...

7.5CVSS8.3AI score0.00967EPSS
Exploits1References3
Prion
Prion
added 2008/06/23 5:41 p.m.8 views

Sql injection

SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...

7.5CVSS9.1AI score0.00967EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2008/06/23 5:0 p.m.20 views

CVE-2008-2817

SQL injection vulnerability in albums.php in NiTrO Web Gallery 1.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via the CatId parameter in a show action...

8.3AI score0.00967EPSS
Exploits1References3
CVE
CVE
added 2008/06/23 5:0 p.m.42 views

CVE-2008-2817

NiTrO Web Gallery 1.4.3 and earlier contains a SQL injection in albums.php (CatId parameter in a show action) that allows remote attackers to execute arbitrary SQL commands. The issue arises from inadequate sanitization of CatId, enabling potentially unauthorized data access or manipulation. No r...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2008/06/18 12:0 a.m.42 views

NiTrO Web Gallery <= 1.4.3 (section) Remote SQL Injection Vulnerability

No description provided by source. Viva IslaM Viva IslaM Remote SQL Injection Vulnerability NiTrO Web Gallery V1.3 - V1.4- V1.41 - 1.42 - V1.43 albums.php section AuTh0r : Mr.SQL H0ME : WwW.PaL-HaCkEr.CoM Email : [email protected] !! SYRIAN HaCkErS !! Script : NiTrO Web Gallery Versions : V1.3 - V1....

7.1AI score
Exploits0
Rows per page
Query Builder