Lucene search
K

108 matches found

Kitploit
Kitploit
added 2021/10/02 8:30 p.m.22 views

LeakDB - Web-Scale NoSQL Idempotent Cloud-Native Big-Data Serverless Plaintext Credential Search

LeakDB is a tool set designed to allow organizations to build and deploy their own internal plaintext "Have I Been Pwned"-like service. The LeakDB tool set can normalize, deduplicate, index, sort, and search leaked data sets on the multi-terabyte-scale, without the need to distribute large files ...

7.3AI score
Exploits0References3
CNVD
CNVD
added 2020/05/06 12:0 a.m.3 views

Bitcoind and Bitcoin-Qt Bloom Filter Implementations for Input Validation

A denial of service vulnerability exists in the Bloom Filter implementation in Bitcoind and Bitcoin-Qt versions 0.8.x prior to 0.8.4rc1. A remote attacker can exploit this vulnerability to cause a denial of service except for zero errors and process crashes via a specially crafted message sequenc...

6.8AI score
Exploits0
OSV
OSV
added 2019/09/20 3:15 p.m.3 views

CVE-2016-11003

The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation...

8.8CVSS5.8AI score0.01865EPSS
Exploits0References2
NVD
NVD
added 2019/09/20 3:15 p.m.11 views

CVE-2016-11003

The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation...

8.8CVSS8.8AI score0.01865EPSS
Exploits0References2
Prion
Prion
added 2019/09/20 3:15 p.m.11 views

Privilege escalation

The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation...

6.5CVSS7.3AI score0.01865EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/09/20 2:38 p.m.18 views

CVE-2016-11003

The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation...

8.9AI score0.01865EPSS
Exploits0References2
CVE
CVE
added 2019/09/20 2:38 p.m.48 views

CVE-2016-11003

The Bloom plugin for WordPress (Elegant Themes) is affected prior to version 1.1.1, with a privilege escalation vulnerability disclosed across multiple sources (NVD/Red Hat/WPVulnDB/PT Security). Impact described as privilege escalation for registered users, with remediation to upgrade to version...

8.8CVSS8.7AI score0.01865EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/09/20 12:0 a.m.6 views

PT-2019-7796

Name of the Vulnerable Software and Affected Versions Elegant Themes Bloom plugin versions prior to 1.1.1 Description The issue allows for privilege escalation. Recommendations For versions prior to 1.1.1, update to version 1.1.1 or later to resolve the issue...

8.8CVSS7.8AI score0.01865EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2018/10/17 7:54 p.m.22 views

cn.hutool:hutool-aop (>=4.0.0 <=4.1.11), cn.hutool:hutool-bloomFilter (>=4.0.0 <=4.1.11) +79 more potentially affected by CVE-2018-17297 via cn.hutool:hutool-core (>=4.0.0 <=4.1.11)

cn.hutool:hutool-core MAVEN version =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.0.0, =4.1.11 and more Source cves: CVE-2018-17297 Source advisory: OSV:GHSA-RHQ2-2574-78MC...

7.5CVSS7AI score0.02674EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2018/06/07 6:51 a.m.9 views

reservations.bloomu.edu XSS vulnerability

Open Bug Bounty ID: OBB-628407 Description| Value ---|--- Affected Website:| reservations.bloomu.edu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
The Hacker News
The Hacker News
added 2018/01/16 1:2 a.m.14 views

LeakedSource Founder Arrested for Selling 3 Billion Stolen Credentials

Canadian authorities have arrested and charged an Ontario man for operating a website that collected 'stolen' personal identity records and credentials from some three billion online accounts and sold them for profit. According to the Royal Canadian Mounted Police RCMP, the 27-year-old Jordan Eva...

6.9AI score
Exploits0
Krebs on Security
Krebs on Security
added 2018/01/15 4:44 p.m.26 views

Canadian Police Charge Operator of Hacked Password Service Leakedsource.com

Canadian authorities have arrested and charged a 27-year-old Ontario man for allegedly selling billions of stolen passwords online through the now-defunct service Leakedsource.com. The now-defunct Leakedsource service. On Dec. 22, 2017, the Royal Canadian Mounted Police RCMP charged Jordan Evan...

7.1AI score
Exploits0
n0where
n0where
added 2017/08/06 4:6 p.m.16 views

Artificial Inteligent Packet Inspection Engine: AIEngine

AIEngine is a next generation interactive/programmable Python/Ruby/Java packet inspection engine with capabilities of learning without any human intervention, NIDS Network Intrusion Detection System functionality, DNS domain classification, network collector, network forensics and many others...

7.4AI score
Exploits0References3
Patchstack
Patchstack
added 2016/02/18 12:0 a.m.17 views

WordPress Bloom Plugin <= 1.1.0 - Privilege Escalation

This plugin is prone to a privilege escalation vulnerability. Solution Update the plugin...

3.3AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2015/08/12 12:0 a.m.34 views

Geoserver 2.7.1.1 2.6.4 2.5.5.1 - XML External Entity

Geoserver 2.7.1.1 2.6.4 2.5.5.1 - XML External Entity Exploit Title : GeoServer XXE Date : 11/08/2015 Exploit Author : David Bloom Script - Ping to Sven Claessens, Jacques Villemur and Eric Donners Vendor homepage : http://geoserver.org Software Link : http://geoserver.org/release/stable Version ...

Exploits0
NVD
NVD
added 2014/09/29 1:55 a.m.16 views

CVE-2014-6800

The Bloom Township 206 aka net.parentlink.bloom application 4.0.500 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/09/29 1:55 a.m.15 views

Design/Logic Flaw

The Bloom Township 206 aka net.parentlink.bloom application 4.0.500 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/09/29 1:0 a.m.35 views

CVE-2014-6800

The CVE-2014-6800 entry applies to the Bloom Township 206 (net.parentlink.bloom) Android app version 4.0.500. The vulnerability arises because the application does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive informatio...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/29 1:0 a.m.17 views

CVE-2014-6800

The Bloom Township 206 aka net.parentlink.bloom application 4.0.500 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
Kitploit
Kitploit
added 2014/03/18 7:27 p.m.16 views

[Blackhash] Audit Passwords Without Hashes

A traditional password audit typically involves extracting password hashes from systems and then sending those hashes to a third-party security auditor or an in-house security team. These security specialists have the knowledge and tools to effectively audit password hashes. They use password...

9.7AI score
Exploits0
Rows per page
Query Builder