Lucene search
K

216 matches found

The Hacker News
The Hacker News
added 2023/08/12 7:3 a.m.26 views

Lolek Bulletproof Hosting Servers Seized, 5 Key Operators Arrested

European and U.S. law enforcement agencies have announced the dismantling of a bulletproof hosting service provider called Lolek Hosted, which cybercriminals have used to launch cyber-attacks across the globe. "Five of its administrators were arrested, and all of its servers seized, rendering...

7.1AI score
Exploits0
HackRead
HackRead
added 2023/08/10 12:59 p.m.21 views

Feds Seize Bulletproof Hosting Service ”Lolek Hosted”

By Habiba Rashid Operating from Europe, Lolek Hosted offered services that shielded clients' identities and turned a blind eye to the content they posted. This is a post from HackRead.com Read the original post: Feds Seize Bulletproof Hosting Service "Lolek Hosted"...

6.9AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/04/18 12:0 a.m.11 views

5 Types of Cyber Crime Groups

Discover the five main types of cyber crime groups: access as a service, ransomware as a service, bulletproof hosting, crowd sourcing, and phishing as a service as well as tips to strengthen your defense strategy...

7AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/04/18 12:0 a.m.21 views

5 Types of Cyber Crime Groups

Discover the five main types of cyber crime groups: access as a service, ransomware as a service, bulletproof hosting, crowd sourcing, and phishing as a service as well as tips to strengthen your defense strategy...

6.7AI score
Exploits0
0day.today
0day.today
added 2023/04/06 12:0 a.m.207 views

BulletProof FTP Server 2019.0.0.51 Denial Of Service Exploit

Exploit Title: BulletProof FTP Server 2019.0.0.51 - Denial of Service Discovery by: Yehia Elghaly - Mrvar0x Vendor Homepage: https://barcodemagic.com/ Software Link: http://bpftpserver.com/products/bpftpserver/windows/download Tested Version: 2019.0.0.51 Tested on: Windows 7 x86 Steps To Crash:...

6.8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.5 views

SUSE CVE-2015-9230

In the admin/db-backup-security/db-backup-security.php page in the BulletProof Security plugin before .52.5 for WordPress, XSS is possible for remote authenticated administrators via the DBTablePrefix parameter...

4.8CVSS6.2AI score0.01576EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2023/02/14 4:51 p.m.36 views

Massive AdSense Fraud Campaign Uncovered - 10,000+ WordPress Sites Infected

The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70 bogus domains mimicking URL shorteners and infect over 10,800 websites. "The main objective is still ad fraud by artificially increasing traffic to pages which contain the AdSense ID...

7.8AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/11/10 12:0 a.m.19 views

4 Types of Cyber Crime Groups

Discover the four main types of cyber crime groups: access as a service, ransomware as a service, bulletproof hosting, and crowd sourcing as well as tips to strengthen your defense strategy...

1.1AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/05/16 3:15 p.m.10 views

CVE-2022-1265

The BulletProof Security WordPress plugin before 6.1 does not sanitize and escape some of its CAPTCHA settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS5.5AI score0.00577EPSS
Exploits1References2
OSV
OSV
added 2022/05/16 3:15 p.m.4 views

CVE-2022-1265

The BulletProof Security WordPress plugin before 6.1 does not sanitize and escape some of its CAPTCHA settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS5.8AI score0.00577EPSS
Exploits1References1
NVD
NVD
added 2022/05/16 3:15 p.m.14 views

CVE-2022-1265

The BulletProof Security WordPress plugin before 6.1 does not sanitize and escape some of its CAPTCHA settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS0.00577EPSS
Exploits1References1
CVE
CVE
added 2022/05/16 2:30 p.m.86 views

CVE-2022-1265

CVE-2022-1265 affects the BulletProof Security WordPress plugin prior to 6.1. The vulnerability arises from insufficient sanitization/escaping of CAPTCHA settings, allowing high-privileged (Admin+) users to perform stored XSS even when unfiltered_html is disallowed. Impact is client-side JavaScri...

4.8CVSS4.8AI score0.00577EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.6 views

WordPress plugin BulletProof Security 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plug-in. WordPress BulletProof Securitys plugin versions prior to 6.1 have a cross-site scripting vulnerability that...

4.8CVSS5.5AI score0.00577EPSS
Exploits1References2
Patchstack
Patchstack
added 2022/04/19 12:0 a.m.27 views

WordPress BulletProof Security plugin <= 6.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Fayçal CHENA in WordPress BulletProof Security plugin versions = 6.0. Solution Update the WordPress BulletProof Security plugin to the latest available version at least 6.1...

4.8CVSS1.9AI score0.00577EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/03/21 7:15 p.m.2 views

CVE-2022-0590

The BulletProof Security WordPress plugin before 5.8 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/21 7:15 p.m.7 views

CVE-2022-0590

The BulletProof Security WordPress plugin before 5.8 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.5AI score0.00588EPSS
Exploits2References2
Prion
Prion
added 2022/03/21 7:15 p.m.15 views

Cross site scripting

The BulletProof Security WordPress plugin before 5.8 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

3.5CVSS4.7AI score0.00588EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2022/03/21 6:55 p.m.100 views

CVE-2022-0590

CVE-2022-0590 affects the BulletProof Security WordPress plugin (before 5.8). The issue arises from the plugin not sanitising and escaping certain settings, enabling high-privilege admins to perform stored XSS even when unfiltered_html is disallowed. The Red Hat/RedHat-related advisory and multip...

4.8CVSS4.7AI score0.00588EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/03/21 6:55 p.m.28 views

CVE-2022-0590 BulletProof Security < 5.8 - Admin+ Stored Cross-Site Scripting (XSS)

The BulletProof Security WordPress plugin before 5.8 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5AI score0.00588EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/03/21 12:0 a.m.13 views

WordPress plugin BulletProof Security 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists in the WordPress...

4.8CVSS4.9AI score0.00588EPSS
Exploits2References2
Rows per page
Query Builder