226 matches found
CVE-2024-49638
CVE-2024-49638 is a WordPress Risk Warning Bar plugin vulnerability (versions
UBUNTU-CVE-2024-47731
In the Linux kernel, the following vulnerability has been resolved: drivers/perf: Fix alidrwpmu driver interrupt status clearing The alibabauncorepmu driver forgot to clear all interrupt status in the interrupt processing function. After the PMU counter overflow interrupt occurred, an interrupt...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the alidrwpmu driver in the drivers/perf module not clearing its state when handling interrupts, which could...
Microsoft IIS Shortname Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft IIS shortname vulnerability scanner', 'Description' = %q The vulnerability is caused by a tilde character "" in a GET or OPTIONS reques...
CVE-2024-38697
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
CVE-2024-38697 WordPress Goftino plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
CVE-2024-38697 WordPress Goftino plugin <= 1.6 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ali Rahimi Goftino allows Stored XSS.This issue affects Goftino: from n/a through 1.6...
CVE-2024-38697
CVE-2024-38697 is a Stored XSS in the WordPress plugin Goftino (vulnerable: Goftino up to 1.6). The underlying issue is improper neutralization of input during web page generation , enabling stored malicious scripts when data is processed for display. Affected software is the WordPress Goftino pl...
Malicious code in ali-in-wlnd-test-1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0d89d3dbaa5fb0db4821d7bddc99121add0aec27e506f275ad018fb0c0608af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-7440 Malicious code in ali-in-wlnd-test-1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0d89d3dbaa5fb0db4821d7bddc99121add0aec27e506f275ad018fb0c0608af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-6559 Malicious code in ali-mns (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in ali-mns (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in ali-dayu (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-6558 Malicious code in ali-dayu (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Exploit for CVE-2024-36527
CVE-2024-36527 PoC and Bulk Scanner !Bannerscreens/screen.j...
Exploit for Path Traversal in Hsclabs Mailinspector
CVE-2024-34470 PoC and Bulk Scanner Overview This is a pr...
Exploit for OS Command Injection in Zyxel Nas326_Firmware
CVE-2024-29973 PoC and Bulk Scanner Overview This is a pr...
CVE-2024-4450
The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions in the ImportAjaxController.php file in all versions up to, and including, 3.3.5. This makes it possible for authenticated attackers, with...
fatek.com Cross Site Scripting vulnerability OBB-3834038
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-45642
Cross-Site Request Forgery CSRF vulnerability in Hassan Ali Snap Pixel plugin = 1.5.7 versions...