Lucene search
K

15 matches found

HackRead
HackRead
added 2026/01/27 5:58 p.m.6 views

16 Fake ChatGPT Extensions Caught Hijacking User Accounts

A coordinated campaign of 16 malicious GPT optimisers has been caught hijacking ChatGPT accounts. These tools steal session tokens to access private chats, Slack, and Google Drive files...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5583

Malware in sbrugna...

7.5CVSS7.5AI score0.01203EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-5581

Malware in sbrugna...

7.5CVSS7.5AI score0.01919EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5582

Malware in sbrugna...

7.5CVSS7.6AI score0.01677EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-17066

Malware in sbrugna...

6.5CVSS6.6AI score0.00674EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 9:27 p.m.7 views

CVE-2021-30126

Lightmeter ControlCenter 1.1.0 through 1.5.x before 1.5.1 allows anyone who knows the URL of a publicly available Lightmeter instance to access application settings, possibly including an SMTP password and a Slack access token, via a settings HTTP query...

6.5CVSS7.1AI score0.00674EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:17 a.m.5 views

CVE-2019-14365

The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

7.5CVSS6.7AI score0.01919EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:3 a.m.7 views

CVE-2019-14366

WP SlackSync plugin through 1.8.5 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

7.5CVSS6.7AI score0.01677EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:1 a.m.5 views

CVE-2024-32881

Danswer is the AI Assistant connected to company's docs, apps, and people. Danswer is vulnerable to unauthorized access to GET/SET of Slack Bot Tokens. Anyone with network access can steal slack bot tokens and set them. This implies full compromise of the customer's slack bot, leading to internal...

9.8CVSS6.8AI score0.00799EPSS
Exploits0References1
Prion
Prion
added 2021/04/02 8:15 p.m.378 views

Design/Logic Flaw

Lightmeter ControlCenter 1.1.0 through 1.5.x before 1.5.1 allows anyone who knows the URL of a publicly available Lightmeter instance to access application settings, possibly including an SMTP password and a Slack access token, via a settings HTTP query...

6.4CVSS6.6AI score0.00674EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/11/12 9:15 p.m.3 views

CVE-2019-14365

The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

7.5CVSS7.1AI score0.01919EPSS
Exploits0References1
OSV
OSV
added 2019/11/12 9:15 p.m.6 views

CVE-2019-14366

WP SlackSync plugin through 1.8.5 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

7.5CVSS7.1AI score0.01677EPSS
Exploits0References1
Prion
Prion
added 2019/11/12 9:15 p.m.16 views

Code injection

The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

5CVSS7.5AI score0.01919EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/12 8:47 p.m.22 views

CVE-2019-14365

The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

7.5AI score0.01919EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2019/11/12 12:0 a.m.17 views

WP Slacksync < 1.8.6 - Slack Access Token Disclosure

The wpslacksync leaked a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...

5CVSS2.9AI score0.01677EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder