Lucene search
K

114 matches found

OSV
OSV
added 2024/10/09 4:40 p.m.4 views

DRUPAL-CONTRIB-2024-049

The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read: https://www.drupal.org/node/251466s-becoming-owner-maintainer-or-co-mai...

9.8CVSS6.6AI score0.00426EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/09/24 2:1 p.m.669 views

Exploit for Improper Privilege Management in Oracle Vm_Virtualbox

cve-2023-21987-poc Oracle VirtualBox VGA OOB-Read Vulnerab...

7.8CVSS7.7AI score0.00671EPSS
Exploits1
GithubExploit
GithubExploit
added 2024/09/16 1:11 p.m.628 views

Exploit for CVE-2024-32651

CVE-2024-32651 changedetection --port --ip --notification...

10CVSS9.6AI score0.83722EPSS
Exploits5
WPVulnDB
WPVulnDB
added 2024/06/10 12:0 a.m.10 views

ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) < 2.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via WL Product Horizontal Filter Widget

Description The ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution formerly WooLentor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's WL: Product Horizontal Filter widget in all versions up to, and including, 2.9.0 due t...

6.4CVSS5.8AI score0.00376EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/04/20 3:21 a.m.27 views

CVE-2024-1730 Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Media Slider, Drag Drop Slider, Video Slider, Product Slider, Ecommerce Slider) <= 3.14.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Prime Slider – Addons For Elementor Revolution of a slider, Hero Slider, Media Slider, Drag Drop Slider, Video Slider, Product Slider, Ecommerce Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via urls in link fields, images from URLs, and html tags used in widgets in...

5.4CVSS5.2AI score0.0034EPSS
Exploits0References2
Kitploit
Kitploit
added 2024/04/14 9:24 p.m.52 views

Toolkit - The Essential Toolkit For Reversing, Malware Analysis, And Cracking

This tool compilation is carefully crafted with the purpose of being useful both for the beginners and veterans from the malware analysis world. It has also proven useful for people trying their luck at the cracking underworld. It's the ideal complement to be used with the manuals from the site,...

7.2AI score
Exploits0References6
Kitploit
Kitploit
added 2024/04/09 12:30 p.m.68 views

Sicat - The Useful Exploit Finder

Introduction SiCat is an advanced exploit search tool designed to identify and gather information about exploits from both open sources and local repositories effectively. With a focus on cybersecurity, SiCat allows users to quickly search online, finding potential vulnerabilities and relevant...

7.4AI score
Exploits0References2
GithubExploit
GithubExploit
added 2024/03/18 9:2 a.m.563 views

Exploit for External Control of Assumed-Immutable Web Parameter in Fortra Filecatalyst_Workflow

Exploit for CVE-2024-25153 ---...

9.8CVSS9.6AI score0.41741EPSS
Exploits4
Fedora
Fedora
added 2024/03/07 10:33 p.m.25 views

[SECURITY] Fedora 40 Update: jdeparser-2.0.3-17.fc40

This project is a fork of Sun's now Oracle's com.sun.codemodel project. We decided to fork the project because by all evidence, the upstream project is dead and not actively accepting outside contribution. All JBoss projects are urged to use this project instead for source code generation...

8.8CVSS7AI score0.02557EPSS
Exploits3
OSV
OSV
added 2024/03/06 11:24 a.m.177 views

BIT-GITLAB-2020-10080

GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group...

5.3CVSS5AI score0.00929EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2024/01/26 7:0 p.m.521 views

Exploit for Path Traversal in Jenkins

CVE-2024-23897 | Jenkins -p -f or bash python CVE-...

9.8CVSS9.1AI score0.99999EPSS
Exploits46
Kitploit
Kitploit
added 2024/01/22 11:30 a.m.37 views

Uscrapper - Powerful OSINT Webscraper For Personal Data Collection

Introducing Uscrapper 2.0, A powerfull OSINT webscrapper that allows users to extract various personal information from a website. It leverages web scraping techniques and regular expressions to extract email addresses, social media links, author names, geolocations, phone numbers, and usernames...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2024/01/05 11:30 a.m.76 views

D3m0n1z3dShell - Demonized Shell Is An Advanced Tool For Persistence In Linux

Demonized Shell is an Advanced Tool for persistence in linux. Install git clone https://github.com/MatheuZSecurity/D3m0n1z3dShell.git cd D3m0n1z3dShell chmod +x demonizedshell.sh sudo ./demonizedshell.sh One-Liner Install Download D3m0n1z3dShell with all files: curl -L...

7.2AI score
Exploits0References1
GithubExploit
GithubExploit
added 2023/12/01 2:25 a.m.255 views

Exploit for Improper Access Control in Joomla Joomla\!

Joomla-CVE-2023-23752 This Python implementation serves an edu...

5.3CVSS6AI score0.99827EPSS
Exploits43
GithubExploit
GithubExploit
added 2023/11/20 6:58 p.m.93 views

Exploit for Incorrect Authorization in Atlassian Confluence_Data_Center

CVE-2023-22518 - Vulnerabilidad en Confluence Descripción...

10CVSS9.8AI score0.99999EPSS
Exploits14
Code423n4
Code423n4
added 2023/11/10 12:0 a.m.8 views

Users can lose eth when contributing.

Lines of code Vulnerability details Impact When contributing in InitialETHCrowdfund, if minting adjusts the voting power for that user to cap it at totalVotingPower, the user does not get refunded the eth he lost. Proof of Concept PartyGovernanceNFTmint caps the mintedVotingPower at...

6.9AI score
Exploits0
Code423n4
Code423n4
added 2023/11/10 12:0 a.m.8 views

In the _initialize function of the ETHCrowdfundBase contract, when minTotalContributions is equal to maxTotalContributions, crowdfund will never reach its minimum goal in some specific scenarios

Lines of code Vulnerability details Impact In the initialize function of the ETHCrowdfundBase contract, when minTotalContributions is equal to maxTotalContributions, crowdfund will never reach its minimum goal in some specific scenarios. The ETH of users who contribute to this crowdfund will be...

7.1AI score
Exploits0
Kitploit
Kitploit
added 2023/09/03 11:30 a.m.48 views

Associated-Threat-Analyzer - Detects Malicious IPv4 Addresses And Domain Names Associated With Your Web Application Using Local Malicious Domain And IPv4 Lists

Associated-Threat-Analyzer detects malicious IPv4 addresses and domain names associated with your web application using local malicious domain and IPv4 lists. Installation From Git git clone https://github.com/OsmanKandemir/associated-threat-analyzer.git cd associated-threat-analyzer && pip3...

7.1AI score
Exploits0References6
Kitploit
Kitploit
added 2023/05/11 12:30 p.m.21 views

Indicator-Intelligence - Finds Related Domains And IPv4 Addresses To Do Threat Intelligence After Indicator-Intelligence Collects Static Files

Finds related domains and IPv4 addresses to do threat intelligence after Indicator-Intelligence collects static files. Done Related domains, IPs collect Installation From Source Code You can use virtualenv for package dependencies before installation. git clone...

7.3AI score
Exploits0References3
Code423n4
Code423n4
added 2023/04/14 12:0 a.m.10 views

MaxContribution check can be bypassed to give a card high voting power

Lines of code Vulnerability details Proof of Concept ReraiseETHCrowdfund tries limit the voting power of each card by doing a min/maxContribution check in claim and claimMultiple. uint96 contribution = votingPower 1e4 / exchangeRateBps; uint96 maxContribution = maxContribution; // Check that the...

6.9AI score
Exploits0
Rows per page
Query Builder