11 matches found
EUVD-2001-0356
Malware in sbrugna...
CVE-2022-46332 Proofpoint Enterprise Protection (PPS/PoD) XSS in "Attachment Names"
The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...
A week in security (July 5 – July 11)
Last week on Malwarebytes Labs: Racing against a real-life ransomware attack. Podcast with Ski Kacoroski. Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal” Patch now! Emergency fix for PrintNightmare released by Microsoft. Game over: Apex Legends players locked out ...
UPDATE: Gloom-Framework v1.7.5
PenTestIT RSS Feed Update time guys! Please refer my initial blog post about this open source penetration testing framework for Kali Linux. I just saw that it has been updated and we now have Gloom-Framework v1.7.5 with new features and a lot of bug fixes. Actually, it was updated quiet a number ...
LaNewsFactory Multiple Remote Vulnerabilities
Exploit for php platform in category web applications ============================================= LaNewsFactory Multiple Remote Vulnerabilities ============================================= LaNewsFactory Multiple Remote Vulnerabilities...
lanewsfactory - Multiple Vulnerabilities
LaNewsFactory Multiple Remote Vulnerabilities http://www.salvatorefresta.net/files/adv/LaNewsFactory%20Multiple%20Remote%20Vulnerabilities-19042010.txt Name LaNewsFactory Vendor Christophe Brocas Versions Affected = 1.0.0 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.n...
Anonymous Email any of my hair--illustrates the forged messages Raiders-vulnerability warning-the black bar safety net
writer: demonalex/small gods email: demonalexathackermail.com Now traditional send anonymous letter approach is the use of certain so-called mail proxynamed proxy, in fact, mostly for some of the configuration Defective SMTP server, by their manual or some third-party software and mail agent for...
CVE-2002-1738
Alt-N Technologies MDaemon 5.0.5.0 and earlier creates a default MDaemon mail account with a password of MServer, which could allow remote attackers to send anonymous email...
CVE-2001-0357
FormMail vulnerability CVE-2001-0357 affects FormMail.pl (FormMail) 1.6 and earlier. An attacker can remotely modify recipient and message parameters to send anonymous email, effectively enabling spam through the vulnerable script. Connected OpenVAS data identifies affected versions (All versions...
CORRECTION to CODE: FormMail.pl can be used to send anonymous email
Hi All, I did a little playing with FormMail.pl after a run in with a spammer abusing our webserver. Apparently ALL FormMail.pl cgi-bin scripts can be used to spam anonymously. I found another server with FormMail.pl and tried the same exploit to send myself an email and it worked. The email will...
CVE-2000-0386
The CVE-2000-0386 entry concerns FileMaker Pro 5 Web Companion, where remote attackers can send anonymous or forged email. The provided documents confirm this description but do not include deeper root-cause, affected versions, exploit details, or remediation. No explicit fix/version information ...