Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials

Cybersecurity researchers are warning of a new campaign that's targeting Portuguese-speaking users in Brazil with trial versions of commercial remote monitoring and management RMM software since January 2025. "The spam message uses the Brazilian electronic invoice system, NF-e, as a lure to entic...

Hackers Abusing BRc4 Red Team Penetration Tool in Attacks to Evade Detection

Malicious actors have been observed abusing legitimate adversary simulation software in their attacks in an attempt to stay under the radar and evade detection. Palo Alto Networks Unit 42 said a malware sample uploaded to the VirusTotal database on May 19, 2022, contained a payload associated wit...

Reprise Software Reprise License Manager has an unspecified vulnerability

Reprise Software Reprise License Manager is a software licensing toolkit from Reprise Software, Inc. that provides local and cloud-based license management, license enforcement and product activation solutions for publishers of commercial software applications.Reprise Software Reprise License...

Reprise License Manager Remote Code Execution Vulnerability

Reprise Software Reprise License Manager is a software licensing toolkit from Reprise Software, Inc. that provides local and cloud-based license management, license enforcement and product activation solutions for publishers of commercial software applications.Reprise Software Reprise License...

How to add a Security Gateway to TeamCity

TeamCity TeamCity is a continuous integration CI and deployment server which is developed by Jetbrains. It was released in 2006 as a commercial software but can also be used free of charge within a certain scale. Next to Bamboo and Jenkins it is one of the most common solutions to build and deplo...

management.commercialsoftware.co.za XSS vulnerability

Open Bug Bounty ID: OBB-581974 Description| Value ---|--- Affected Website:| management.commercialsoftware.co.za Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...

Tours Manager 1.0 - (cityview.php cityid) SQL Injection Vulnerability

No description provided by source. -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= IN THE NAME OF ALLAH -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Tour...

ClipShare 4.1.4 SQL Injection / Plaintext Password Vulnerabilities

ClipShare version 4.1.4 suffers from remote blind SQL injection and plaintext password vulnerabilities. ===================================================================== Vulnerable Software: ClipShare - Video Sharing Community Script 4.1.4 Official site: http://www.clip-share.com Software...

CVE-2012-4970

Cross-site scripting XSS vulnerability in the web management interface on Polycom HDX Video End Points with UC APL software before 2.7.1.1J, and commercial software before 3.0.5, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-4970

Cross-site scripting XSS vulnerability in the web management interface on Polycom HDX Video End Points with UC APL software before 2.7.1.1J, and commercial software before 3.0.5, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Fluger Edit 2 Blind SQL Injection / Cross Site Scripting Vulnerability

Exploit for php platform in category web applications ===================================================== Vulnerable Software: Fluger Edit v.2 || administration software Vendor: http://www.fluger.com/ Software License: Commercial Vulnerabilities: Blind SQL Injection And XSS Tested: In Wild...

Fluger Edit 2 Blind SQL Injection / Cross Site Scripting

===================================================== Vulnerable Software: Fluger Edit v.2 || administration software Vendor: http://www.fluger.com/ Software License: Commercial Vulnerabilities: Blind SQL Injection And XSS Tested: In Wild ===================================================== Dork...

New HP Report Shows 19 Percent Drop in Reported Vulnerabilities

A new study due for public release Thursday shows vulnerabilities reported in commercial software applications fell significantly last year, but almost a quarter of those found were considered at high risk for exploitation. The “2011 Top Cyber Security Risks Report,” based on data from HP’s DV...

Software Insecurity is Our Biggest Weakness

ST. PAUL, MINN.–If the United States wants to remain competitive in the global economy and prevent widespread penetrations of its strategic, corporate and commercial networks, enterprises and government agencies should stop relying on commercial software and go back to writing more of their own...

Prozilla Software Directory (XSS/SQL) Multiple Vulnerabilities

Exploit for unknown platform in category web applications ============================================================== Prozilla Software Directory XSS/SQL Multiple Vulnerabilities ==============================================================...

Do not release details about securrity vulnerabilities until after the fix was available for a reasonable period of time

It is an unfortunate practice at Atlassian to as a part of release notes release all the information, often including example exploits|http://jira.atlassian.com/browse/CONF-9350, about security vulnerabilities that were fixed in the version being released. This gives us great headaches because: w...

photopostRetrieve.txt

Update: 2:41 PM 5/11/2005 Subject: " PhotoPost Arbitrary Data Exploit " Description: PhotoPost is a popular commercial image publishing software. Everyone loves showing off their photos! Add PhotoPost to your site, or let us install it for you,and your visitors will be able to upload their photos...

Hosting Controller Software Detection

The remote host is running Hosting Controller, a commercial web-hosting automation suite for the Windows Server family platform. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid19254; scriptversion"1.15"; scriptcvsdate"Date: 2019/11/25"; scriptnameenglish:"Hosting...

Echo Security Advisory 2005.18

--------------------------------------------------------------------------- ECHOADV18$2005 Multiple SQL INJECTION in Ublog Reload 1.0.5 --------------------------------------------------------------------------- Author: Dedi Dwianto Date: June, 20th 2005 Location: Indonesia, Jakarta Web:...

Lotus Domino: security hole the size of Texas, plus somewhat smaller protocol auditing utility

Ben, this is an updated version. Plese let this one thru, if it isn't too late. Thanks. Even my girlfriend said this bug is incredible :P Sit and relax. First of all, a few words from me. Sorry for that if you hate my occassional intros - please appreciate that I am not putting 80x20 ASCII 'A D V...