Lucene search
K

8 matches found

Packet Storm News
Packet Storm News
added 2026/02/09 12:0 a.m.19 views

MUZZLE: Adaptive Agentic Red-Teaming of Web Agents against Indirect Prompt Injection Attacks

Large language model LLM based web agents are increasingly deployed to automate complex online tasks by directly interacting with web sites and performing actions on users' behalf. While these agents offer powerful capabilities, their design exposes them to indirect prompt injection attacks...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/12 12:0 a.m.3 views

Proving DNSSEC Correctness: A Formal Approach to Secure Domain Name Resolution

The Domain Name System Security Extensions DNSSEC are critical for preventing DNS spoofing, yet its specifications contain ambiguities and vulnerabilities that elude traditional "break-and-fix" approaches. A holistic, foundational security analysis of the protocol has thus remained an open proble...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/06/18 12:0 a.m.8 views

The vulnerability of the PT Network Attack Discovery (PT NAD) traffic analysis system arises from the failure to take measures to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands on behalf of the superuser.

The vulnerability of the PT Network Attack Discovery PT NAD traffic analysis system exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands on behalf of the superuser...

9.6CVSS6AI score
Exploits0References1Affected Software1
OSV
OSV
added 2024/03/06 10:53 a.m.19 views

BIT-JAEGER-2020-10750

Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials...

7.1CVSS5.7AI score0.00427EPSS
Exploits0References3
Akamai Blog
Akamai Blog
added 2021/06/07 4:0 a.m.14 views

Trusting Locations Bites Us Yet Again

Recently, Microsoft announced the discovery of yet another attack being launched by the now infamous Nobelium group, which has been responsible for numerous successful attacks, including the widespread SolarWinds breach in 2020...

2.4AI score
Exploits0
The Hacker News
The Hacker News
added 2013/09/24 2:2 p.m.35 views

Internet Explorer zero-day exploit used watering hole attacks to target Japanese users

Attackers exploiting a zero-day vulnerability CVE-2013-3893 in Microsoft's Internet Explorer browser and served them on compromised popular Japanese news websites. According to FireEye, at least three major Japanese media websites were compromised in watering hole attacks, dubbed Operation...

9.3CVSS6.6AI score0.8593EPSS
Exploits18
OpenVAS
OpenVAS
added 2009/07/15 12:0 a.m.26 views

Ubuntu USN-796-1 (pidgin)

The remote host is missing an update to pidgin announced via advisory USN-796-1. OpenVAS Vulnerability Test $Id: ubuntu7961.nasl 8616 2018-02-01 08:24:13Z cfischer $ $Id: ubuntu7961.nasl 8616 2018-02-01 08:24:13Z cfischer $ Description: Auto-generated from advisory USN-796-1 pidgin Authors: Thoma...

5CVSS0.1AI score0.03377EPSS
Exploits1References1
securityvulns
securityvulns
added 2005/04/21 12:0 a.m.31 views

Secure Science Corporation Application Software Advisory 055

Secure Science Corporation Advisory ASA-055 http://www.securescience.net [email protected] 877-570-0455 --------------------------------------------------------- PHPROJEKT 4.2 Chatroom is vulnerable to Cross-Site Scripting XSS attacks allowing a "broadcast" attack to users in the...

1.3AI score
Exploits0
Rows per page
Query Builder