Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2024/06/25 1:47 p.m.3 views

MAL-2024-6505 Malicious code in ad-search (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packagesadded 2024/06/25 1:47 p.m.3 views

Malicious code in ad-search (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
NVD
NVDadded 2023/10/02 1:15 p.m.9 views

CVE-2023-41580

Phpipam before v1.5.2 was discovered to contain a LDAP injection vulnerability via the dname parameter at /users/ad-search-result.php. This vulnerability allows attackers to enumerate arbitrary fields in the LDAP server and access sensitive data via a crafted POST request...

7.5CVSS7.5AI score0.0056EPSS
Exploits1References2
ATTACKERKB
ATTACKERKBadded 2023/10/02 1:15 p.m.1 views

CVE-2023-41580

Phpipam before v1.5.2 was discovered to contain a LDAP injection vulnerability via the dname parameter at /users/ad-search-result.php. This vulnerability allows attackers to enumerate arbitrary fields in the LDAP server and access sensitive data via a crafted POST request...

7.5CVSS7.3AI score0.0056EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2023/10/02 12:0 a.m.1 views

PT-2023-7010 · Phpipam · Phpipam

Name of the Vulnerable Software and Affected Versions: phpipam versions prior to 1.5.2 Description: The issue allows attackers to enumerate arbitrary fields in the LDAP server and access sensitive data via a crafted POST request. This is possible due to a LDAP injection vulnerability via the dnam...

7.8CVSS7.5AI score0.0056EPSS
Exploits1References7
Vulnrichment
Vulnrichmentadded 2023/10/02 12:0 a.m.10 views

CVE-2023-41580

Phpipam before v1.5.2 was discovered to contain a LDAP injection vulnerability via the dname parameter at /users/ad-search-result.php. This vulnerability allows attackers to enumerate arbitrary fields in the LDAP server and access sensitive data via a crafted POST request...

7.5AI score0.0056EPSS
Exploits1References2
Snyk
Snykadded 2020/04/17 12:0 a.m.2 views

Malicious Package

Overview ad-search is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using ad-search...

8CVSS5.5AI score
Exploits0References2
Citrix
Citrixadded 2018/03/14 12:0 a.m.6 views

Workspace Environment Management (WEM): Active Directory search improvements in WEM 4.6

Introduction The Active Directory AD system built into the WEM Administration Console and WEM Infrastructure Server has been refactored in WEM 4.6 to improve performance and stability. Although AD searches performed by the WEM Console and WEM Infrastructure server in previous WEM versions have...

6.9AI score
Exploits0
Openbugbounty
Openbugbountyadded 2015/10/12 12:40 p.m.8 views

isae.fr XSS vulnerability

Vulnerable URL: http://www.isae.fr/fr/ad-search.html?keys=%3Cimg+src%3Dx+onerror%3Dprompt%28%2FXSSPOSED%2F%29%3E Details: Description| Value ---|--- Patched:| Yes, at 18.11.2015 Latest check for patch:| 18.11.2015 01:21 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

6.3AI score
Exploits0
Rows per page
Query Builder