Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2025/08/01 12:0 a.m.12 views

PT-2025-31879

Name of the Vulnerable Software and Affected Versions Android versions prior to security patch level 2025-08-05 Android 16 versions prior to the August 2025 update Pixel 3a, S10, and OnePlus 7 affected versions not specified Description A critical remote code execution RCE flaw exists in the...

10CVSS8.4AI score0.00498EPSS
Exploits0References31
The Hacker News
The Hacker News
added 2024/08/01 9:49 a.m.17 views

Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware

Google has announced that it's adding a new layer of protection to its Chrome browser through what's called app-bound encryption to prevent information-stealing malware from grabbing cookies on Windows systems. "On Windows, Chrome uses the Data Protection API DPAPI which protects the data at rest...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/03 11:12 a.m.52 views

Attack Surface Management vs. Vulnerability Management

Attack surface management ASM and vulnerability management VM are often confused, and while they overlap, they're not the same. The main difference between attack surface management and vulnerability management is in their scope: vulnerability management checks a list of known assets, while attac...

7.2AI score
Exploits0
Prion
Prion
added 2024/01/09 12:15 a.m.13 views

Remote code execution

Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...

6.5CVSS8AI score0.01535EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2024/01/08 11:57 p.m.21 views

CVE-2024-21663 Remote code execution on ReconServer due to improper input sanitization on the prips command

Discord-Recon is a Discord bot created to automate bug bounty recon, automated scans and information gathering via a discord server. Discord-Recon is vulnerable to remote code execution. An attacker is able to execute shell commands in the server without having an admin role. This vulnerability h...

9.9CVSS8.8AI score0.01535EPSS
Exploits1References5
Kitploit
Kitploit
added 2018/07/05 1:45 p.m.3447 views

Sn1per v5.0 - Automated Pentest Recon Scanner

Sn1per Community Edition is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Sn1per Professional is Xero Security's premium reporting addon for Professional Penetration Testers, Bug Bounty Researchers and Corporate Security teams to manage...

9.8CVSS10AI score0.99999EPSS
Exploits345References3
ThreatPost
ThreatPost
added 2017/07/13 2:24 p.m.12 views

Attackers Using Automated Scans to Takeover WordPress Installs

Attackers have been setting their sights on freshly installed WordPress deployments, taking advantage of users who fail to follow through when it comes to configuring their server’s settings. Researchers at the WordPress security plugin WordFence said Tuesday they observed a significant spike in...

0.5AI score
Exploits0References2
Kitploit
Kitploit
added 2016/08/16 2:30 p.m.53 views

Raptor - Web-based Source Code Vulnerability Scanner

Raptor is a web-based web-serivce + UI github centric source-vulnerability scanner i.e. it scans a repository with just the github repo url. You can setup webhooks to ensure automated scans every-time you commit or merge a pull request. The scan is done asynchonously and the results are available...

7.2AI score
Exploits0References18
Rows per page
Query Builder