Lucene search
K

28 matches found

NVD
NVD
added 2026/06/15 2:16 p.m.18 views

CVE-2016-20079

WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the gateway parameter. Attackers can supply file paths with directory traversal sequences or null byte injection to the gatewa...

6.9CVSS0.00778EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/15 12:0 p.m.8 views

CVE-2016-20079 WordPress Dharma Booking 2.28.3 Local File Inclusion via proccess.php

WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the gateway parameter. Attackers can supply file paths with directory traversal sequences or null byte injection to the gatewa...

6.9CVSS5.4AI score0.00778EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/15 12:0 p.m.32 views

CVE-2016-20079 WordPress Dharma Booking 2.28.3 Local File Inclusion via proccess.php

WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the gateway parameter. Attackers can supply file paths with directory traversal sequences or null byte injection to the gatewa...

6.9CVSS0.00778EPSS
Exploits0References3
CVE
CVE
added 2026/06/15 12:0 p.m.17 views

CVE-2016-20079

CVE-2016-20079 affects WordPress Dharma Booking 2.28.3 and earlier. The issue is a local file inclusion in the proccess.php gateway parameter, allowing unauthenticated attackers to read sensitive files by using directory traversal or null byte injection. This can expose configuration and system f...

6.9CVSS5.5AI score0.00778EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/15 12:0 p.m.10 views

EUVD-2016-10891

WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the gateway parameter. Attackers can supply file paths with directory traversal sequences or null byte injection to the gatewa...

6.9CVSS5.4AI score0.00778EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.20 views

PT-2026-49217

WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that allows unauthenticated attackers to include arbitrary files by manipulating the gateway parameter. Attackers can supply file paths with directory traversal sequences or null byte injection to the gatewa...

6.9CVSS5.4AI score0.00778EPSS
Exploits0References4
Trellix
Trellix
added 2024/11/20 12:0 a.m.8 views

Phobos: Stealthy Ransomware That Operated Under the Radar - Until Now

Phobos: Stealthy Ransomware That Operated Under the Radar - Until Now By Jambul Tologonov, John Fokker and Duy-Phuc Pham · November 20, 2024 On November 18th, the US Justice Department unsealed criminal charges against a Russian national for allegedly administering the sale, distribution, and...

7.1AI score
Exploits0
Qualys Blog
Qualys Blog
added 2023/11/23 9:53 a.m.30 views

Unveiling the Deceptive Dance: Phobos Ransomware Masquerading As VX-Underground

During a recent hunt, Qualys Threat Research has come across a ransomware family known as Phobos, impersonating VX-Underground. Phobos ransomware has been knocking on our door since early 2019 and is often seen being distributed via stolen Remote Desktop Protocol RDP connections. Strongly believe...

7.7AI score
Exploits0
hivepro
hivepro
added 2023/01/24 5:29 a.m.67 views

CrySIS Ransomware A Long-Standing Threat with a New Twist

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The ransomware family CrySIS, dubbed Dharma, has been advancing since 2016. Its source code was made available to the public, enabling others to customize it for their use. The criminals behind the malwa...

2.2AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/19 9:45 a.m.42 views

Europol and Bitdefender Release Free Decryptor for LockerGoga Ransomware

A decryptor for the LockerGoga ransomware has been made available by Romanian cybersecurity firm Bitdefender in collaboration with Europol, the No More Ransom project, and Zurich law enforcement authorities. Identified in January 2019, LockerGoga drew headlines for its attacks against the Norwegi...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/25 3:43 p.m.76 views

Microsoft Adds Default Protection Against RDP Brute-Force Attacks in Windows 11

Microsoft is now taking steps to prevent Remote Desktop Protocol RDP brute-force attacks as part of the latest builds for the Windows 11 operating system in an attempt to raise the security baseline to meet the evolving threat landscape. To that end, the default policy for Windows 11 builds –...

2AI score
Exploits0
HackRead
HackRead
added 2020/08/24 9:19 p.m.43 views

Iranian hackers used RDP to hit businesses with Dharma ransomware

By Waqas The hackers using Dharma ransomware are "far behind the level of sophistication of big-league Iranian APTs." This is a post from HackRead.com Read the original post: Iranian hackers used RDP to hit businesses with Dharma ransomware...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2020/08/24 3:23 p.m.260 views

Iran-Linked 'Newbie' Hackers Spread Dharma Ransomware Via RDP Ports

A group of ‘script kiddies’ tied to Iran are targeting companies worldwide with internet-facing Remote Desktop Protocol RDP ports and weak credentials in order to infect them with Dharma ransomware. The Dharma malware also known as Crysis has been distributed as a ransomware-as-a-service RaaS mod...

1.9CVSS0.5AI score0.84138EPSS
Exploits13References10
ThreatPost
ThreatPost
added 2020/03/06 9:50 p.m.12 views

Next-Gen Ransomware Packs a 'Human' Punch, Microsoft Warns

Researchers are warning that “human operated” ransomware campaigns are growing more sophisticated, adopting new infection tactics and lateral movement techniques that traditional defense teams aren’t equipped to handle. Researchers said that “auto-spreading” ransomware – like WannaCry and NotPety...

1.1AI score
Exploits0References15
ThreatPost
ThreatPost
added 2020/03/06 9:50 p.m.85 views

Next-Gen Ransomware Packs a 'Human' Punch, Microsoft Warns

Researchers are warning that “human operated” ransomware campaigns are growing more sophisticated, adopting new infection tactics and lateral movement techniques that traditional defense teams aren’t equipped to handle. Researchers said that “auto-spreading” ransomware – like WannaCry and NotPety...

1.1AI score
Exploits0References15
Malwarebytes
Malwarebytes
added 2020/01/10 6:4 p.m.65 views

Threat spotlight: Phobos ransomware lives up to its name

Ransomware has struck dead on organizations since it became a mainstream tool in cybercriminals' belts years ago. From massive WannaCry outbreaks in 2017 to industry-focused attacks by Ryuk in 2019, ransomware's got its hooks in global businesses and shows no signs of stopping. That includes a...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/07/24 6:9 p.m.110 views

A deep dive into Phobos ransomware

Phobos ransomware appeared at the beginning of 2019. It has been noted that this new strain of ransomware is strongly based on the previously known family: Dharma a.k.a. CrySis, and probably distributed by the same group as Dharma. While attribution is by no means conclusive, you can read more...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/05/20 3:57 p.m.195 views

A week in security (May 13 – 19)

Last week, Malwarebytes Labs reviewed active and unique exploit kits targeting consumers and businesses alike, reported about a flaw in WhatsApp used to target a human rights lawyer, and wrote about an important Microsoft patch that aimed to prevent a "WannaCry level" attack. We also profiled the...

9.3CVSS9.6AI score0.99913EPSS
Exploits29
Malwarebytes
Malwarebytes
added 2019/05/13 3:55 p.m.69 views

A week in security (May 6 – 12)

Last week on Labs, we discussed what to do when you discover a data breach, how 5G could impact cybersecurity strategy, the top six takeaways for user privacy, vulnerabilities in financial mobile apps that put consumers and businesses at risk, and in our series about vital infrastructure, we...

8AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2019/02/25 3:56 p.m.109 views

Defeating Compiler-Level Obfuscations Used in APT10 Malware

Summary The Carbon Black Threat Analysis Unit TAU recently analyzed a series of malware samples that utilized compiler-level obfuscations. For example, opaque predicates were applied to Turla mosquito and APT10 ANEL. Another obfuscation, control flow flattening, was applied to APT10 ANEL and Dhar...

7AI score
Exploits0
Rows per page
Query Builder