EUVD-2011-0043

Malware in sbrugna...

EUVD-2005-2664

Malware in sbrugna...

EUVD-2009-4163

Malware in sbrugna...

CVE-2025-25184

Rack provides an interface for developing web applications in Ruby. Prior to versions 2.2.11, 3.0.12, and 3.1.10, Rack::CommonLogger can be exploited by crafting input that includes newline characters to manipulate log entries. The supplied proof-of-concept demonstrates injecting malicious conten...

CVE-2021-1127 Cisco Enterprise NFV Infrastructure Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based management interface. The vulnerability is due to improper input...

CVE-2015-3200

modauth in lighttpd before 1.4.36 allows remote attackers to inject arbitrary log entries via a basic HTTP authentication string without a colon character, as demonstrated by a string containing a NULL and new line character...

Super cannon Great Cannon）defect inquiry of JS bloomer-vulnerability warning-the black bar safety net

Following the last post in the black bar to secure the article on the super cannon Great Cannon）defect inquiry of TTL article, we reference from abroad, a research organization for the event post-mortem analysis, as well as by being an attack site log and capture the code on a bloomer, locking Th...

Attack Log analysis Chapter of the IIS&Apache-vulnerability warning-the black bar safety net

Source: thehackingthe defense of Each network of the most dark time isServiceis after the attack of the helpless, in fact, serviceis suffered after the attack, theserviceis the recording file detail record. hackactivity of the clues. Here, I introduce two kinds of common web pageserviceis the mos...

CVE-2005-2663

masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file...