Lucene search
+L

37 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 7:26 a.m.2 views

Malicious code in chance-wallet-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d85a9403800e2e220d731d72ebdea79ce768447496cd8fc4950a4b9a3cfb016 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 7:26 a.m.3 views

Malicious code in chance-soluble-pot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4e72fe04093a4e8d8a198297d7eaccaf8d3c943350fa66080bc6a0de0e0d0b3f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:26 a.m.1 views

EUVD-2025-82542

Malicious code in chance-wallet-store npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 7:26 a.m.0 views

EUVD-2025-82543

Malicious code in chance-soluble-pot npm...

6.6AI score
Exploits0
Patchstack
Patchstack
added 2024/11/20 11:0 a.m.7 views

WordPress Tailored Tools plugin <= 1.8.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by CTRL - Chance Patchstack Alliance in WordPress Plugin Tailored Tools versions = 1.8.4...

6.5CVSS6.1AI score0.00312EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2024/10/15 10:27 a.m.26 views

CVE-2024-45272 MB connect line/Helmholz: Generation of weak passwords vulnerability

An unauthenticated remote attacker can perform a brute-force attack on the credentials of the remote service portal with a high chance of success, resulting in connection lost...

7.5CVSS0.00595EPSS
Exploits0References2
CVE
CVE
added 2024/05/07 4:53 p.m.82 views

CVE-2024-29209

The CVE-2024-29209/29210 family concerns Phish Alert Button (PAB) for Outlook and related KnowBe4 clients. Technical details across connected records show: attack via update mechanism (CVE-2024-29209) where the client fails to validate the update server’s TLS/SSL and ignores digital signatures, e...

6CVSS5AI score0.00374EPSS
Exploits0References1
CVE
CVE
added 2024/05/07 4:53 p.m.59 views

CVE-2024-29210

CVE-2024-29210 describes a local privilege escalation in Phish Alert Button for Outlook (PAB) caused by insecure permissions on the configuration file (update server URL). An unprivileged local user can modify the configuration to point updates to a malicious server, enabling LPE in conjunction w...

2.8CVSS7.1AI score0.00178EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/01 5:29 a.m.16 views

CVE-2024-27009 s390/cio: fix race condition during online processing

In the Linux kernel, the following vulnerability has been resolved: s390/cio: fix race condition during online processing A race condition exists in ccwdevicesetonline that can cause the online process to fail, leaving the affected device in an inconsistent state. As a result, subsequent attempts...

6.8AI score0.00175EPSS
Exploits0References5
Code423n4
Code423n4
added 2023/07/14 12:0 a.m.6 views

Vault.sponsor may take away the prize chance from the receiver.

Lines of code Vulnerability details Impact TwabController.delegateBalance is related to the probability to get the prize, and Vault.sponsor can make the others' delegateBalance to 0. A malicious user can send a small amount of assets to every depositor and be the only prize taker. Proof of Concep...

6.8AI score
Exploits0
HackRead
HackRead
added 2023/04/12 7:14 p.m.17 views

OpenAI Launches ChatGPT Bug Bounty Program – Earn $200 to $20k

By Waqas Do you have the skills to take part in OpenAI's ChatGPT Bug Bounty Program? If so, here is your chance to earn big bucks. This is a post from HackRead.com Read the original post: OpenAI Launches ChatGPT Bug Bounty Program - Earn $200 to $20k...

6.6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/30 12:0 a.m.4 views

PT-2023-1365 · Tenable · Tenable.Sc +2

Name of the Vulnerable Software and Affected Versions: Tenable Nessus, tenable.io, tenable.sc affected versions not specified Description: A potential privilege escalation issue was identified internally, which could allow a malicious actor with sufficient permissions to modify environment...

9CVSS8.8AI score0.00639EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/08/03 12:0 a.m.11 views

PT-2022-22442 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel version 5.1 Description: The issue is related to a remote code execution vulnerability in the ChanceGenerator component via the call function. This allows for potential exploitation. Recommendations: For Laravel version 5.1, at the...

10CVSS7.5AI score0.00936EPSS
Exploits1References9
Openbugbounty
Openbugbounty
added 2022/03/04 9:42 p.m.9 views

chance-song.net Cross Site Scripting vulnerability OBB-2407754

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
ThreatPost
ThreatPost
added 2021/09/21 4:2 p.m.27 views

Turla APT Plants Novel Backdoor In Wake of Afghan Unrest

The Turla advanced persistent threat APT group is back with a new backdoor used to infect systems in Afghanistan, Germany and the U.S., researchers have reported. On Tuesday, Cisco Talos researchers said that they’ve spotted infections they attributed to the Turla group aka Snake, Venomous Bear,...

7.5AI score
Exploits0References17
GithubExploit
GithubExploit
added 2020/10/21 9:42 a.m.172 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.99512EPSS
Exploits75
GithubExploit
GithubExploit
added 2020/09/16 3:57 a.m.199 views

Exploit for CVE-2020-1472

ZeroLogon testing script A Python script that uses the Impack...

10CVSS8.3AI score0.99512EPSS
Exploits75
0day.today
0day.today
added 2020/03/28 12:0 a.m.227 views

FreeCommander XE 2020 Pathname Buffer Overflow Exploit

!/usr/bin/python Exploit Title: FreeCommander XE 2020 - Pathname Buffer Overflow SEH Version: Build 810a 32-bit Software Link: https://freecommander.com/downloads/FreeCommanderXE-32-publicsetup.zip Exploit Author: Hodorsec email protected / email protected Vendor Homepage:...

0.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/09/21 9:41 p.m.13 views

michigan.secondchancebonuszone.com XSS vulnerability

Vulnerable URL: https://michigan.secondchancebonuszone.com/goldenticket/feedback.php/%22onmouseover%3d'prompt/OPENBUGBOUNTY/'bad%3d%22 Details: Description| Value ---|--- Patched:| Yes, at 17.10.2017 Latest check for patch:| 17.10.2017 14:03 GMT Vulnerability type:| XSS Vulnerability status:|...

6.3AI score
Exploits0
0day.today
0day.today
added 2017/05/21 12:0 a.m.22 views

Sure Thing Disc Labeler 6.2.138.0 - Buffer Overflow (PoC) Exploit

Exploit for windows platform in category dos / poc Exploit Title: Sure Thing Disc Labeler - Stack Buffer Overflow PoC Date: 5-19-17 Exploit Author: Chance Johnson email protected Vendor Homepage: http://www.surething.com/ Software Link: http://www.surething.com/disclabeler Version: 6.2.138.0 Test...

7AI score
Exploits0
Rows per page
Query Builder