EUVD-2017-14671

Malware in sbrugna...

EUVD-2025-32190

Malicious code in bioql PyPI...

CVE-2025-5141

A binary in the BoKS Server Agent component of Fortra's Core Privileged Access Manager BoKS on versions 7.2.0 up to 7.2.0.17, 8.1.0 up to 8.1.0.22, 8.1.1 up to 8.1.1.7, 9.0.0 up to 9.0.0.1 and also legacy tar installs of BoKS 7.2 without hotfix 0474 on Linux, AIX, and Solaris allows low privilege...

kernel: xfrm: fix one more kernel-infoleak in algo dumping

A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...

kernel: xfrm: fix one more kernel-infoleak in algo dumping

A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...

Exploit for CVE-2024-32640

And exploited SQL injection vulnerabilities in Mura/Masa C...

CVE-2022-30004

Sourcecodester Online Market Place Site v1.0 suffers from an unauthenticated blind SQL Injection Vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection...

CrossC2-1

It is an offensive tool for macOS. The repository contains a CrossC2 framework fork, version 2.0, created by gloxec. The tool includes various modules for tasks such as file management, password gathering, keylogging, browser data dumping, and more. The framework uses a loader script that include...

Nespresso Smart Cards Brewed with Weak Security

Researchers have demonstrated how to outsmart Nespresso Pro machines that use certain smart cards, hacking them to dispense coffee on-demand. Nespresso produces a range of coffees and machines for personal and professional use. Some of the commercial machines accept Mifare Classic stored-value...

SQLMap v1.3.7 - Automatic SQL Injection And Database Takeover Tool

SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

Spoofing

The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/USPhone/ASUSX0081:7.0/NRD90M/USPhone-14.14.1711.92-20171208:user/release-keys contains a pre-installed app with a package name of com.asus.loguploader versionCode=1570000275, versionName=7.0.0.55170515. This app contains an...

SQLMap v1.1.8 - Automatic SQL Injection And Database Takeover Tool

SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lastin...

USN-3102-1: Quagga vulnerabilities

It was discovered that Quagga incorrectly handled dumping data. A remote attacker could possibly use a large BGP packet to cause Quagga to crash, resulting in a denial of service. CVE-2016-4049 It was discovered that the Quagga package incorrectly set permissions on the configuration directory. A...

FBPwn : A Cross-Platform Facebook Profile Dumper tool

FBPwn : A Cross-Platform Facebook Profile Dumper tool FBPwn is an open source, cross-platform, Java based Facebook profile dumper. It can send friend requests to a list of Facebook profiles, and poll for their acceptance notification. Once the victim accepts the invitation, it dumps all their...

Blind SQL Injection Dumper

Blind SQL Injection Dumper v1.1 Win32 Console По мотивам https://forum.antichat.ru/showpost.php?p=1494443&postcount=11 Описание 1. Возникает сложность при использовании большой и сложной конструкции запроса, особенно при переборе с использованием LIMIT. Утилита с ключом -q позволяет...

MycroCMS 0.5 Remote Blind SQL Injection Vulnerability

No description provided by source. ======================================================= MycroCMS 0.5 Remote Blind SQL Injection Vulnerability ======================================================= ,--^----------,--------,-----,-------^--, | ||||||||| --------' | O .. CWH Underground Hacking...

somechess.txt

Somechess v1.5 rc1 Homepage: http://www.astrodogpress.org/chess/ Affected files: Profile input boxes ----------------------- Upon dumping the sql data into the table if you get errors and it wont create the tables & data like it did to me, then just remove all the " from the sql file. You'll also...