Malicious code in kindly-testing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3df19034df58ae63ea16e04d79827be967105dfe24a2074dea497a46268c1910 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8673 Malicious code in kindly-testing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3df19034df58ae63ea16e04d79827be967105dfe24a2074dea497a46268c1910 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CLSA-2023-1701799960 Fix of 8 CVEs

CVE-url: https://ubuntu.com/security/CVE-2023-45871 - igb: Limit maximum frame Rx based on MTU - igb: Only sync size of expected frame in ethtool testing - igb: Add support for ethtool private flag to allow use of legacy Rx - igb: Add support for using order 1 pages to receive large frames - igb:...

Building an AppSec Program with Qualys WAS -Introduction and Configuring a Web Application or API: Default Scan Settings

Qualys WAS Web Application Scanning tools stand out as The Leading Dynamic Application Security Testing DAST solutions in the industry. Since it comes with default scan settings, understanding these settings in detail is critical to uncover vulnerabilities effectively. Scan performance and covera...

Exploit for Cross-site Scripting in Helpsystems Cobalt_Strike

Gui-poc-test A testing tool for CobaltStrike-RCE:CVE-2022-3919...

CVE-2023-6474

A vulnerability has been found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file manage-phlebotomist.php. The manipulation of the argument pid leads to cross-site request forgery. The attack can be initiated...

Cross site request forgery (csrf)

A vulnerability has been found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file manage-phlebotomist.php. The manipulation of the argument pid leads to cross-site request forgery. The attack can be initiated...

CVE-2023-49948

Forgejo before 1.20.5-1 allows remote attackers to test for the existence of private user accounts by appending .rss or another extension to a URL...

Nipah Virus Testing Management System Cross-Site Request Forgery Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site request forgery vulnerability exists in version 1.0 of the PHPGurukul Nipah Virus Testing Management System, which stems from the parameter pid in the file manage-phlebotomist.php that can lead to cross-sit...

Quick Quiz 2.4 File Upload - Remote Code Execution Vulnerability

Title: Quick-Quiz-2.4 File Upload - RCE Author: nu11secur1ty Vendor: https://mediacity.co.in/mediacity/ Software: https://codecanyon.net/item/quick-quiz-laravel-quiz-and-exam-system/21117633?srank=14 Reference: https://portswigger.net/web-security/file-upload,...

CVE-2023-6474

CVE-2023-6474 affects PHPGurukul Nipah Virus Testing Management System 1.0, specifically the manage-phlebotomist.php file. The issue is a cross-site request forgery (CSRF) caused by manipulation of the pid parameter in that script. The vulnerability can be triggered remotely, and public disclosur...

CVE-2023-6474 PHPGurukul Nipah Virus Testing Management System manage-phlebotomist.php cross-site request forgery

A vulnerability has been found in PHPGurukul Nipah Virus Testing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file manage-phlebotomist.php. The manipulation of the argument pid leads to cross-site request forgery. The attack can be initiated...

CVE-2023-6465 PHPGurukul Nipah Virus Testing Management System registered-user-testing.php cross site scripting

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been classified as problematic. This affects an unknown part of the file registered-user-testing.php. The manipulation of the argument regmobilenumber leads to cross site scripting. It is possible to initiat...

CVE-2023-6465

CVE-2023-6465 affects PHPGurukul Nipah Virus Testing Management System v1.0, specifically the file registered-user-testing.php where the regmobilenumber argument is vulnerable. The root cause is a cross-site scripting flaw that can be exploited remotely; multiple sources note that the exploit has...

Nipah Virus Testing Management System Cross-Site Scripting Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. A cross-site scripting vulnerability exists in version 1.0 of the PHPGurukul Nipah Virus Testing Management System, which stems from the parameter regmobilenumber in the file Registered-user-testing.php that causes...

PT-2023-32678 · Unknown · Phpgurukul Nipah Virus Testing Management System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Nipah Virus Testing Management System version 1.0 Description: A vulnerability was found in the PHPGurukul Nipah Virus Testing Management System, affecting an unknown part of the file registered-user-testing.php. The manipulation o...

CVE-2023-46746

CVE-2023-46746 concerns PostHog (self-hosted) where a server-side request forgery (SSRF) vulnerability could be exploited by authenticated users. The root cause is that PostHog did not verify whether a URL is local when enabling webhooks, allowing an authenticated user to forge a POST request. Th...

CVE-2023-6442

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add-phlebotomist.php. The manipulation of the argument empid/fullname leads to cross site scripting. The...

CVE-2023-6442 PHPGurukul Nipah Virus Testing Management System add-phlebotomist.php cross site scripting

A vulnerability was found in PHPGurukul Nipah Virus Testing Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file add-phlebotomist.php. The manipulation of the argument empid/fullname leads to cross site scripting. The...

CVE-2023-6442

CVE-2023-6442 affects PHPGurukul Nipah Virus Testing Management System 1.0, specifically the add-phlebotomist.php functionality. The root cause is manipulation of the empid/fullname parameter, which leads to cross-site scripting. Attacks can be launched remotely, and public exploits exist. The vu...