CVE-2014-3888

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/scada/yokogawabkfsimvhfd.rb 2025-02-06 03:13:41+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:28+00:00| seen|...

CVE-2009-2335

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wordpressloginenum.rb 2025-02-06 03:13:39+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:38+00:00| seen|...

Malicious Package

Overview Version 0.3.0 of react-dates-sc contained malicious code. The code when executed in the browser would enumerate password, cvc, cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation If version 0.3.0 of this module is found...

GHSA-446M-MV8F-Q348 Regular Expression Denial of Service in moment

Affected versions of moment are vulnerable to a low severity regular expression denial of service when parsing dates as strings. Recommendation Update to version 2.19.3 or later...

CVE-2018-6892

creationtimestamp| type| source ---|---|--- 2018-02-13 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44027 2018-02-26 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44175 2018-05-29 15:50:33+00:00| seen|...

CVE-2017-18046

creationtimestamp| type| source ---|---|--- 2018-02-11 13:20:49+00:00| seen| MISP/5a8042be-fe8c-4071-a140-414502de0b81 2025-03-15 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-03-15 2026-03-23 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities -...

Qualys Cloud Suite 8.12 New Features

This new release of the Qualys Cloud Suite, version 8.12 adds new reporting options for the PC Report, allowing you to include new summaries in the remediation section of the report for control failures. Feature Highlights Qualys Policy Compliance PC/SCAP PC Report: Failure Summary Section – You...

CVE-2018-3810

creationtimestamp| type| source ---|---|--- 2018-01-03 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43420 2021-07-30 10:09:34+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/207 2024-06-22 09:33:24+00:00| published-proof-of-concept|...

calendarioslaborales.com XSS vulnerability

Open Bug Bounty ID: OBB-451550 Description| Value ---|--- Affected Website:| calendarioslaborales.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventio...

magpul.com XSS vulnerability

Open Bug Bounty ID: OBB-448067 Description| Value ---|--- Affected Website:| magpul.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

CVE-2017-5817

creationtimestamp| type| source ---|---|--- 2017-11-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43195 2018-01-10 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43492 2018-05-29 15:50:33+00:00| seen|...

ubuy.qa XSS vulnerability

Vulnerable URL: https://www.ubuy.qa/en/search/?cat=name==US-store='-confirm/OPENBUGBOUNTY/-' Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 170335 VIP website status:| No Coordinated Disclosure Timeline:...

linkomanija.net Open Redirect vulnerability

Open Bug Bounty ID: OBB-413767 Description| Value ---|--- Affected Website:| linkomanija.net Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...

Regular Expression Denial Of Service (ReDoS)

moment is vulnerable to denial of service DoS attacks. These attacks are possible because the regular expression that is used for matching dates takes awhile for long strings...

zalaand.af XSS vulnerability

Vulnerable URL: http://zalaand.af/fullstory.php?id=53850%27%22%3E%3Csvg/onload=confirm/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 465894 VIP website status:| No Coordinated Disclosure...

dodax.co.uk XSS vulnerability

Vulnerable URL: https://www.dodax.co.uk/search/?i=%20=test%27;%20alert%27OPENBUGBOUNTY%27;%20var%20xss%20=%20%27a Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 1160978 VIP website...

Regular Expression Denial of Service

Overview Affected versions of moment are vulnerable to a low severity regular expression denial of service when parsing dates as strings. Recommendation Update to version 2.19.3 or later. References - Issue 4163 - PR 4326 - GitHub Advisory...

Protecting Confidential Data: You May Not Be as Secure as You Think

Part One of a Three Part Series Unless you have been out of the country or otherwise shunning the news, you have likely heard that on September 7th and again on September 15th, Equifax reported that it suffered a security incident from May 13th through July 30th, 2017. This breach is broad reachi...

eastswallaroos.com.au XSS vulnerability

Vulnerable URL: http://www.eastswallaroos.com.au/html/includes/showImage.asp?imageName=xss"\r\n Details: Description| Value ---|--- Patched:| No Latest check for patch:| 17.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

curso-ingles.com XSS vulnerability

Open Bug Bounty ID: OBB-293039 Description| Value ---|--- Affected Website:| curso-ingles.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...