Lucene search
K

76 matches found

HackRead
HackRead
added 2020/05/09 11:20 p.m.57 views

Hackers infect authentic 2FA app to infect Mac devices with malware

By Sudais Asif It is believed that an infamous group is behind this malware. This is a post from HackRead.com Read the original post: Hackers infect authentic 2FA app to infect Mac devices with malware...

3.9AI score
Exploits0
Packet Storm
Packet Storm
added 2020/02/04 12:0 a.m.139 views

Centreon 19.10.5 Pollers Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Centreon Poller Authenticated Remote Command Execution', 'Description' = %q TODO , 'Author' = 'Omri Baso', discovery 'Fabien Aunay', discovery...

0.4AI score
Exploits0
Kitploit
Kitploit
added 2019/06/11 1:7 p.m.46 views

RecScanSec - Reconnaisance Scanner Security

RecScanSec made for reconnaisance Scanner and information gathering with an emphasis on simplicity. It will do everything from. Features Information Security Headers WAF Analyzer Information Disclosure Banner Grabbing Url Crawl HTML Form Detector Port Scanner Get SSL Information Subdomain...

6.8AI score
Exploits0References1
Kitploit
Kitploit
added 2019/05/10 12:42 p.m.302 views

ReconT - Reconnaisance / Footprinting / Information Disclosure

Recon-Tool made for reconnaissance and information gathering with an emphasis on simplicity. It will do everything from. Features Information Security Headers WAF Detector Banner Grabbing Phone Number Credit Card Number Email US Social Security Number Url Crawl Dom Paramter Url Internal Dynamic...

7.1AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/03/06 12:0 a.m.4 views

PT-2019-16739 · Prometheus +1 · Prometheus +1

Name of the Vulnerable Software and Affected Versions: Prometheus versions prior to 2.7.1 Description: A stored, DOM based, cross-site scripting XSS flaw was found. An attacker could exploit this by convincing an authenticated user to visit a crafted URL on a Prometheus server, allowing for the...

6.1CVSS5.5AI score0.02736EPSS
Exploits0References24
Carbon Black Blog
Carbon Black Blog
added 2018/11/29 3:12 p.m.74 views

8 Ways to Avoid the Cybersecurity Grinch This Holiday Season

'Tis the season to be jolly…unless you work in cybersecurity. According to the Carbon Black Threat Analysis Unit TAU, organizations should expect to see a spike in potential cyberattacks starting with Black Friday/Cyber Monday and continuing through the holiday shopping season. TAU’s analysis...

Exploits0
NVD
NVD
added 2017/04/24 3:59 p.m.19 views

CVE-2017-2334

An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...

7.5CVSS7.5AI score0.00973EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/04/24 3:0 p.m.25 views

CVE-2017-2334

An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...

7.5AI score0.00973EPSS
Exploits0References2
Mageia
Mageia
added 2017/01/13 10:32 a.m.21 views

Updated webmin package fixes security vulnerability

The webmin package has been updated to version 1.831, fixing possible security issues in the Authentic theme fixed in 1.801 and/or 1.810, and containing several other bug fixes and enhancements. See the upstream release announcements and change log for details...

2.7AI score
Exploits0References3
WPVulnDB
WPVulnDB
added 2015/03/03 12:0 a.m.12 views

Authentic Theme - Arbitrary File Download

The authentic WordPress theme was affected by an Arbitrary File Download security vulnerability...

3.2AI score
Exploits0References3Affected Software1
0day.today
0day.today
added 2014/09/09 12:0 a.m.18 views

WordPress Authentic Arbitrary File Download Vulnerability

WordPress Authentic theme suffers from an arbitrary file download vulnerability. Note that this finding houses site-specific data. |||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress Authentic...

7.2AI score
Exploits0
Patchstack
Patchstack
added 2014/09/08 12:0 a.m.12 views

WordPress Authentic Theme - Arbitrary File Download

Authentic theme's "download.php" is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files from the web server and get potentially sensitive information. Solution Update the theme...

3.9AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2014/09/08 12:0 a.m.19 views

WordPress Theme Authentic - download.php Arbitrary File Download

WordPress Theme Authentic - download.php Arbitrary File Download source: https://www.securityfocus.com/bid/69671/info Authentic theme for Wordpress is prone to an arbitrary file-download vulnerability. An attacker can exploit this issue to download arbitrary files from the web server and obtain...

Exploits0
Exploit DB
Exploit DB
added 2014/09/08 12:0 a.m.27 views

WordPress Theme Authentic - 'download.php' Arbitrary File Download

source: https://www.securityfocus.com/bid/69671/info Authentic theme for Wordpress is prone to an arbitrary file-download vulnerability. An attacker can exploit this issue to download arbitrary files from the web server and obtain potentially sensitive information...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2014/09/08 12:0 a.m.20 views

WordPress Authentic Arbitrary File Download

|||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress Authentic Theme Arbitrary File Download Vulnerability | | Google Dork: inurl:wp-content/themes/authentic | | Date : Date: 2014-09-07 | | Exploi...

Exploits0
Kitploit
Kitploit
added 2014/04/05 12:19 a.m.38 views

Mylar - Platform for building secure web applications

Web applications rely on servers to store and process confidential information. However, anyone who gains access to the server e.g., an attacker, a curious administrator, or a government can obtain all of the data stored there. Mylar protects data confidentiality even when an attacker gets full...

7AI score
Exploits0
Rows per page
Query Builder