Lucene search
K

65 matches found

Kitploit
Kitploit
added 2019/01/02 12:32 p.m.60 views

MISP - Malware Information Sharing Platform and Threat Sharing

The objective of MISP is to foster the sharing of structured information within the security community and abroad. MISP provides functionalities to support the exchange of information but also the consumption of the information by Network Intrusion Detection System NIDS, LIDS but also log analysi...

6.9AI score
Exploits0References8
Hacker One
Hacker One
added 2019/01/01 11:18 a.m.30 views

Starbucks: Bug in GraphQL and API integration leads to limited user address disclosure

A modified GraphQL query to fetch a user's address book entries led to a limited disclosure of user address book entries. The modified query resulted in a backend API request with undefined as a parameter. The response contained address lists of accounts with a username of undefined. We were not...

1AI score
Exploits0
vulnersOsv
vulnersOsv
added 2018/11/09 5:49 p.m.4 views

fd-api-integration (>=0.0.2 <=0.0.9) potentially affected by CVE-2017-16055 via sqlserver (=1.0.2)

sqlserver NPM version =1.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on sqlserver and may be impacted: - fd-api-integration =0.0.2, =0.0.9 Source cves: CVE-2017-16055 Source advisory: OSV:GHSA-3RH7-VM4X-Q2HP...

7.5CVSS7.1AI score0.01123EPSS
Exploits0
Kitploit
Kitploit
added 2018/10/20 12:25 p.m.317 views

Munin - Online Hash Checker For Virustotal And Other Services

Munin is a online hash checker utility that retrieves valuable information from various online sources The current version of Munin queries the following services: Virustotal Malshare HybridAnalysis Note: Munin is based on the script "VT-Checker", which has been maintained in the LOKI repository...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2018/09/03 9:20 p.m.80 views

Leaked? - A Checking Tool For Hash Codes And Passwords Leaked

Leaked? is A Checking tool for Hash codes and Passwords leaked, use API from @webtobesocial. Leaked? can work in any OS if they have support Python 3 Features Check passwords leaked Check hash code leaked Exit About Author Install and Run in Linux sudo apt update && apt install python3 python3-pi...

7.5AI score
Exploits0References1
seebug.org
seebug.org
added 2018/06/29 12:0 a.m.31 views

Teradek VidiU Pro 3.0.3 CSRF Change Password Exploit

Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...

Exploits0
seebug.org
seebug.org
added 2018/06/29 12:0 a.m.25 views

Teradek VidiU Pro 3.0.3 (snapshot.cgi) Stream Disclosure

Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...

Exploits0
Packet Storm
Packet Storm
added 2018/05/22 12:0 a.m.33 views

Teradek VidiU Pro 3.0.3 (snapshot.cgi) Stream Disclosure

Teradek VidiU Pro 3.0.3 snapshot.cgi Stream Disclosure Vendor: Teradek, LLC Product web page: https://www.teradek.com Affected version: VidiU, VidiU Mini, VidiU Pro 3.0.3r32136 3.0.2r31225 2.4.10 Summary: The Teradek VidiU gives you the freedom to broadcast live high definition video directly to...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/05/22 12:0 a.m.30 views

Teradek VidiU Pro 3.0.3 - Cross-Site Request Forgery Vulnerability

Exploit for hardware platform in category web applications input type="hidden" name="pw...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2018/05/21 12:0 a.m.38 views

Teradek VidiU Pro 3.0.3 - Server-Side Request Forgery

Teradek VidiU Pro 3.0.3 SSRF Vulnerability Vendor: Teradek, LLC Product web page: https://www.teradek.com Affected version: VidiU, VidiU Mini, VidiU Pro 3.0.3r32136 3.0.2r31225 2.4.10 Summary: The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web...

7AI score
Exploits0
exploitpack
exploitpack
added 2018/05/21 12:0 a.m.18 views

Teradek VidiU Pro 3.0.3 - Cross-Site Request Forgery

Teradek VidiU Pro 3.0.3 - Cross-Site Request Forgery input type="hidden" name="pw2" value...

0.5AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2018/05/21 12:0 a.m.598 views

Teradek VidiU Pro 3.0.3 SSRF Vulnerability

Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...

6.9CVSS5.9AI score0.00301EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2018/05/21 12:0 a.m.603 views

Teradek VidiU Pro 3.0.3 CSRF Change Password Exploit

Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...

5.1CVSS5.8AI score0.00159EPSS
Exploits2
Zero Science Lab
Zero Science Lab
added 2018/05/21 12:0 a.m.582 views

Teradek VidiU Pro 3.0.3 (snapshot.cgi) Stream Disclosure

Summary The Teradek VidiU gives you the freedom to broadcast live high definition video directly to the Web without a PC. Whether you're streaming out of a video switcher or wirelessly from your camera, VidiU allows you to go live when you want, where you want. VidiU offers API level integration...

5.8AI score
Exploits0
Kitploit
Kitploit
added 2017/11/12 1:32 p.m.171 views

CredSniper - Phishing Framework which supports SSL and capture credentials with 2FA tokens

Easily launch a new phishing site fully presented with SSL and capture credentials along with 2FA tokens using CredSniper. The API provides secure access to the currently captured credentials which can be consumed by other applications using a randomly generated API token. Benefits Fully supporte...

9.2AI score
Exploits0References1
Akamai Blog
Akamai Blog
added 2017/05/09 2:41 p.m.20 views

Strengthening Network Access Security with Multi-Factor Authentication

As technology continues to develop, more and more applications become not just convenient, but necessary. It was less than a decade ago that it was inconceivable we would 'need' to carry a consumer device to access the internet in our pockets. Today, it is essential. The same is true with the...

7.6AI score
Exploits0
n0where
n0where
added 2017/02/13 9:0 p.m.31 views

Malware Information Sharing Platform: MISP

Malware Information Sharing Platform MISP, Malware Information Sharing Platform and Threat Sharing, is an open source software solution for collecting, storing, distributing and sharing cyber security indicators and threat about cyber security incidents analysis and malware analysis. MISP is...

6.8AI score
Exploits0References7
Drupal
Drupal
added 2015/10/14 12:0 a.m.11 views

Twilio - Moderately Critical - Access bypass - SA-CONTRIB-2015-157

This module provides hooks and rules integration to leverage the Twilio API to send/receive phone calls and text messages. The module relies on existing permissions for providing administration which can lead to untrusted users having access to perform actions that may not be intended. This...

6.9AI score
Exploits0References13
Fedora
Fedora
added 2015/04/09 9:10 a.m.13 views

[SECURITY] Fedora 21 Update: drupal7-webform-4.7-1.fc21

Webform is the module for making surveys in Drupal. After a submission, users may be sent an e-mail "receipt" as well as sending a notification to administrators. Results can be exported into Excel or other spreadsheet applications. Webform also provides some basic statistical review and has and...

2.8AI score
Exploits0
ThreatPost
ThreatPost
added 2014/08/14 1:18 p.m.18 views

Google Adds Warnings About Deceptive Software to Safe Browsing Service

The Google Safe Browsing service has become an integral part of most of the major browsers, integrating malware alerts, warnings about malicious Web sites and suspicious content. The company has been expanding the capabilities of the service steadily over the last few years, and now Google is...

1.5AI score
Exploits0References3
Rows per page
Query Builder