LibrePS4

LibrePS4 stable PSFREE Original Lapse Kex ported to 9.00 Very...

vulnerabilitydb

This is a public vulnerability database repository for Snyk, a tool that helps find and fix known vulnerabilities in Node.js dependencies. The repository contains a list of folders for vulnerable npm packages, each with a subfolder for a specific date YYYYMMDD containing data files. The data is...

Malicious code in fake-package-agpl-license (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 53470e96107ebc806b1a440821244a335389aca112b5752ce995ae87150b0b4d The OpenSSF Package Analysis project identified 'fake-package-agpl-license' @ 1.0.0 npm as malicious. It is considered malicious because: - The...

Multiple DMS XSS (CVE-2022-47412 through CVE-20222-47419)

Through the course of routine security testing and analysis, Rapid7 has discovered several issues in on-premises installations of open source and freemium Document Management System DMS offerings from four vendors. While all of the discovered issues are instances of CWE-79: Improper Neutralizatio...

SUSE-FU-2022:1419-1 Feature update for grafana

This update for grafana fixes the following issues: Update from version 7.5.12 to version 8.3.5 jscSLE-23422 - Security: CVE-2022-21702: XSS vulnerability in handling data sources bsc1195726 CVE-2022-21703: cross-origin request forgery vulnerability bsc1195727 CVE-2022-21713: Insecure Direct Obje...

SUSE: Security Advisory (SUSE-SU-2019:2048-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:0119-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PatrowlHears - PatrowlHears - Vulnerability Intelligence Center / Exploits

PatrOwl provides scalable, free and open-source solutions for orchestrating Security Operations and providing Threat Intelligence feeds. PatrowlHears is an advanced and real-time Vulnerability Intelligence platform, including CVE, exploits and threats news. Try it now! To try PatrowlHears, instal...

Command Execution Vulnerability in O2OA Unpacked Overwrite

O2OA is based on J2EE architecture, integrated mobile office, smart office, support for private deployment, adaptive load capacity, can largely save the enterprise software development costs based on the AGPL open source enterprise information technology system requirements of custom development...

Carnivore - Tool For Assessing On-Premises Microsoft Servers Authentication Such As ADFS, Skype, Exchange, And RDWeb

Carnivore is an assessment tool for Skype for Business, Exchange, ADFS, and RDWeb servers as well as some O365 functionality. Carnivore includes some new post-authentication Skype for Business functionality. Released as open source by NCC Group Plc - https://www.nccgroup.com/ Developed by Chris...

openSUSE Security Update : mariadb (openSUSE-2019-327)

This update for mariadb to version 10.2.22 fixes the following issues : Security issues fixed : - CVE-2019-2510: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service bsc1122198. - CVE-2019-2537: Fixed a vulnerability which can lead to MySQL compromise and lead to...

SUSE SLED12 / SLES12 Security Update : mariadb (SUSE-SU-2019:0119-1)

This update for mariadb to version 10.2.19 fixes the following issues: bsc1116686 Security issues fixed : CVE-2016-9843: Big-endian out-of-bounds pointer bsc1013882 CVE-2018-3282, CVE-2018-3174, CVE-2018-3143, CVE-2018-3156, CVE-2018-3251, CVE-2018-3185, CVE-2018-3277, CVE-2018-3162, CVE-2018-317...

WMI Command Shell Wrapper: WMIcmd

WMI Command Shell Wrapper When doing low impact investigations and other similar activities you may want to minimize what is written to disk / obvious. This tool allows us to execute commands via WMI and get information not otherwise available via this channel. Purpose A small utility which only...

AfterLogic WebMail Lite Authentication Bypass

AfterLogic WebMail Lite is a free web-based IMAP and SMTP email-client with Ajax interface. AfterLogic WebMail Lite is available for both PHP and ASP.NET platforms. The version of AfterLogic WebMail Lite that is written in PHP is free and open-source software subject to the terms of the Affero...

After Logic Mail - Remote Admin Takeover (All versions)

AfterLogic WebMail Lite is a free web-based IMAP and SMTP email-client with Ajax interface. AfterLogic WebMail Lite is available for both PHP and ASP.NET platforms. The version of AfterLogic WebMail Lite that is written in PHP is free and open-source software subject to the terms of the Affero...