Exploit for Improper Encoding or Escaping of Output in Apache Http_Server

CVE-2024-38475SonicBoomApacheURLTraversalPoC Author: a...

Malicious code in zscaner (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ee09d48ac6f9e7d0460c2a2bc7c9aaae013ce04ac342eb164683b214616e56d1 Campaign is split into multiple packages that altogether exfiltrates data from desktop Telegram application. 1. "pyapiepo" is a cover package that provides som...

Malicious code in zmaker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2f4ac88a121488df2fdfa1cb5409f3443f658a30d679f20acc41dd2c656bd3b8 Campaign is split into multiple packages that altogether exfiltrates data from desktop Telegram application. 1. "pyapiepo" is a cover package that provides som...

MAL-2025-191944 Malicious code in zscaner (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ee09d48ac6f9e7d0460c2a2bc7c9aaae013ce04ac342eb164683b214616e56d1 Campaign is split into multiple packages that altogether exfiltrates data from desktop Telegram application. 1. "pyapiepo" is a cover package that provides som...

MAL-2025-191943 Malicious code in zmaker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2f4ac88a121488df2fdfa1cb5409f3443f658a30d679f20acc41dd2c656bd3b8 Campaign is split into multiple packages that altogether exfiltrates data from desktop Telegram application. 1. "pyapiepo" is a cover package that provides som...

Octopii - An AI-powered Personal Identifiable Information (PII) Scanner

Octopii is an open-source AI-powered Personal Identifiable Information PII scanner that can look for image assets such as Government IDs, passports, photos and signatures in a directory. Working Octopii uses Tesseract's Optical Character Recognition OCR and Keras' Convolutional Neural Networks CN...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

CVE-2021-44228scanner modified - Deprecated Original Scrip...

Vxscan

This is a Python script called Vxscan, which is a comprehensive scanning tool. It is primarily used for sensitive file detection, WAF/CDN identification, port scanning, fingerprint/service identification, operating system identification, weak password detection, POC scanning, and SQL injection. T...

Dirble - Fast Directory Scanning And Scraping Tool

Dirble is a website directory scanning tool for Windows and Linux. It's designed to be fast to run and easy to use. How to Use Download one of the precompiled binaries for Linux, Windows, or Mac, or compile the source using Cargo, then run it from a terminal. The default wordlist Dirble uses is...

Vxscan

This is a Python script for a comprehensive vulnerability scanner, Vxscan. The script is designed to perform various types of scans, including: 1. Directory scanning and JavaScript leak detection 2. WAF/CDN identification 3. Port scanning 4. Fingerprinting and service identification 5. Operating...

U.S. Dept Of Defense: Exposed ███████ Administrative Interface (ColdFusion 11)

Summary: The "/██████████/administrator/" directory is accessible to the public and allows an attacker to further enumerate the system and/or perform brute force attacks. Description: The ████████ website has an exposed "Administrative Interface" for ColdFusion 11, which could be useful to an...

Odd guest stars of a certain sub-patch not getshell-a vulnerability warning-the black bar safety net

Problem site: wan.7k7k.com Nginx file parsing vulnerability 0x00:everything is beautiful to blame ! In the site to see a beauty player, to view the next image address, 发现url为http://wan.7k7k.com/uploadfiles/userfiles/image/%E7%A5%9E%E6%9B%B2/%E7%8E%A9%E5%AE%B62.jpg Try the url+/x. php can...

file_upload

This plugin will try to expoit insecure file upload forms. One configurable parameter exists: extensions The extensions parameter is a comma separated list of extensions that this plugin will try to upload. Many web applications verify the extension of the file being uploaded, if special extensio...

rsync-list-modules NSE Script

Lists modules available for rsync remote file sync synchronization. Example Usage nmap -p 873 --script rsync-list-modules Script Output PORT STATE SERVICE 873/tcp open rsync | rsync-list-modules: | www www directory | log log directory | etc etc directory Requires rsync shortport stdnse local rsy...

PHPFinance Detection

This host is running PHPFinance, a financial management program. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Trend Micro OfficeScan Client Denial Of Service Vulnerability

This host is installed with Trend Micro OfficeScan Client and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: secpodtrendmicroofficescandosvuln.nasl 5369 2017-02-20 14:48:07Z cfi $ Trend Micro OfficeScan Client Denial Of Service Vulnerability Authors: Antu Sanadi...

Web Server Directory Enumeration

This plugin attempts to determine the presence of various common directories on the remote web server. By sending a request for a directory, the web server response code indicates if it is a valid directory or not. This plugin was written by H D Moore Changes by Tenable: - Revised plugin title...