CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ThreatPost•added 2017/03/10 9:0 a.m.•14 views

Privilege Escalation Flaw Patched in Schneider Wonderware

Data analysis and visualization software deployed inside a larger operational intelligence software sold by Schneider Electric has been patched against a critical privilege escalation vulnerability. The vulnerability was discovered in-house by Schneider Electric engineers in the Tableau...

10CVSS1.3AI score0.01888EPSS

Exploits0References3

RedhatCVE•added 2017/01/31 7:47 a.m.•26 views

CVE-2017-2596

Linux kernel built with the KVM visualization support CONFIGKVM, with nested visualizationnVMX feature enablednested=1, is vulnerable to host memory leakage issue. It could occur while emulating VMXON instruction in 'handlevmon'. An L1 guest user could use this flaw to leak host memory potentiall...

6.5CVSS1.9AI score0.00049EPSS

Hacker One•added 2016/12/17 6:45 a.m.•49 views

X (Formerly Twitter): Remote Unrestricted file Creation/Deletion and Possible RCE.

Hello Gents, During my research on Twitter BBP, I found below domain name: Reverb.twitter.com Background: We worked with Twitter to develop TwitterReverb, an application that reveals how conversations arise and reverberate across the entire Twitter landscape. The custom application allows visitor...

7.2AI score

RedhatCVE•added 2016/12/15 7:10 p.m.•32 views

CVE-2016-9588

Linux kernel built with the KVM visualization support CONFIGKVM, with nested visualizationnVMX feature enablednested=1, is vulnerable to an uncaught exception issue. It could occur if an L2 guest was to throw an exception which is not handled by an L1 guest...

5.5CVSS1.1AI score0.00076EPSS

n0where•added 2016/12/12 12:51 p.m.•57 views

Real Time Performance Monitoring: netdata

Real Time Performance Monitoring Netdata is a daemon that collects data in realtime per second and presents a web site to view and analyze them. The presentation is also real-time and full of interactive charts that precisely render all collected values. netdata is the fastest way to visualize...

7.4AI score

Exploits0References3

OSV•added 2016/12/11 2:59 a.m.•1 views

ALPINE-CVE-2016-6615

XSS issues were discovered in phpMyAdmin. This affects navigation pane and database/table hiding feature a specially-crafted database name can be used to trigger an XSS attack; the "Tracking" feature a specially-crafted query can be used to trigger an XSS attack; and GIS visualization feature. Al...

6.1CVSS6.5AI score0.00321EPSS

NVD•added 2016/12/11 2:59 a.m.•15 views

CVE-2016-6615

6.1CVSS6.3AI score0.00321EPSS

Exploits0References4

OSV•added 2016/12/11 2:59 a.m.•1 views

DEBIAN-CVE-2016-6615

6.1CVSS9.1AI score0.00321EPSS

OSV•added 2016/12/11 2:59 a.m.•0 views

UBUNTU-CVE-2016-6615

6.1CVSS6.9AI score0.00321EPSS

Exploits0References3

UbuntuCve•added 2016/12/11 2:59 a.m.•19 views

CVE-2016-6615

6.1CVSS6.9AI score0.00321EPSS

Prion•added 2016/12/11 2:59 a.m.•20 views

Cross site scripting

4.3CVSS6AI score0.00321EPSS

Exploits0References4Affected Software1

Cvelist•added 2016/12/11 2:0 a.m.•25 views

CVE-2016-6615

7.5AI score0.00321EPSS

Exploits0References4

Debian CVE•added 2016/12/11 2:0 a.m.•34 views

CVE-2016-6615

6.1CVSS7.7AI score0.00321EPSS

exploitpack•added 2016/11/23 12:0 a.m.•32 views

UCanCode - Multiple Vulnerabilities

UCanCode - Multiple Vulnerabilities UCanCode multiple vulnerabilities Url: http://www.hmi-software.com/ http://www.ucancode.net/index.htm http://www.ucancode.net/bbs/zhuce/login.htm Description: Form vendor's web page "UCanCode Software is a Market Leading provider of HMI & SCADA, CAD, UML, GIS,...

0.5AI score

0day.today•added 2016/11/23 12:0 a.m.•49 views

UCanCode - Multiple Vulnerabilities

Exploit for windows platform in category dos / poc UCanCode multiple vulnerabilities Url: http://www.hmi-software.com/ http://www.ucancode.net/index.htm http://www.ucancode.net/bbs/zhuce/login.htm Description: Form vendor's web page "UCanCode Software is a Market Leading provider of HMI & SCADA,...

7AI score

Kitploit•added 2016/11/09 1:49 p.m.•52 views

geoip-attack-map - Cyber Security GeoIP Attack Map Visualization

This geoip attack map visualizer was developed to display network attacks on your organization in real time. The data server follows a syslog file, and parses out source IP, destination IP, source port, and destination port. Protocols are determined via common ports, and the visualizations vary i...

7.4AI score

Kitploit•added 2016/10/27 2:30 p.m.•15 views

datasploit - A tool to perform various OSINT techniques

A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitoring on the data. Overview of the tool: Performs OSINT on a domain / email / username / phone and find out information from different sources. Correlates and...

7AI score

n0where•added 2016/10/27 5:34 a.m.•20 views

OWASP SSL TLS Scanning : DeepViolet

DeepViolet is a TLS/SSL scanning API written in Java. To keep DeepViolet easy to use, identify bugs, reference implementations have been developed that consume the API. If you want to see what DeepViolet can do, use it from the command line in your scripts or use the graphical tool from the comfo...

7.2AI score

ThreatPost•added 2016/09/27 11:44 a.m.•8 views

New Google Tools Help Devs Improve Content Security Policy Protection

Cross-site scripting is the cockroach of web application security vulnerabilities, enjoying continued longevity despite the abundant availability of scanning tools and programming advice designed to squash it. Google yesterday took another shot at eradicating XSS attacks with the release of two...

6.3AI score