Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Code423n4
Code423n4added 2022/11/13 12:0 a.m.13 views

No Revert on Failure, an order can be execute successfully by disguising them as NFTs.

Lines of code Vulnerability details Impact ERC20 tokens don't throw a error when failed in transfer. A malicious user can pretend to be sending an ERC721 token while it is something else. Orders are getting executed inside LooksRareProxy.sol, an attacker as a maker can make an BasicOrder that has...

6.7AI score
Exploits0
NVD
NVDadded 2021/12/27 7:15 p.m.11 views

CVE-2021-23244

ColorOS pregrant dangerous permissions to apps which are listed in a whitelist xml named default-grant-permissions.But some apps in whitelist is not installed, attacker can disguise app with the same package name to obtain dangerous permission...

7.8CVSS0.00164EPSS
Exploits0References1
Malwarebytes
Malwarebytesadded 2017/12/08 4:0 p.m.18 views

Interesting disguise employed by new Mac malware HiddenLotus

On November 30, Apple silently added a signature to the macOS XProtect anti-malware system for something called OSX.HiddenLotus.A. It was a mystery what HiddenLotus was until, later that same day, Arnaud Abbati found the sample and shared it with other security researchers on Twitter. The...

6.7AI score
Exploits0
seebug.org
seebug.orgadded 2016/12/14 12:0 a.m.424 views

Nagios Core < 4.2.2 Curl Command Injection/Code Execution (CVE-2016-9565)

Author: p0wd3r, dawu know Chong Yu 404 security lab Date: 2016-12-15 0x00 vulnerability overview 1. Vulnerability description Nagios is a monitoring of the IT infrastructure program, recently security researchers Dawid Golunski discovered in Nagios Core there is a code execution vulnerability: an...

10CVSS8.9AI score0.21018EPSS
Exploits12
ThreatPost
ThreatPostadded 2011/08/16 2:46 a.m.13 views

Five Questions About Aaron Barr's DEFCON (by Aaron Barr)

Editor’s note: Finding Aaron Barr at this year’s DEFCON hacker conference in Las Vegas was like a giant game of “Where’s Waldo.” Given the events of the past year, you can hardly blame him for keeping a low profile. First there was the attack on him and his then-employer, HBGary Federal, his...

7AI score
Exploits0References5
myhack58
myhack58added 2006/01/11 12:0 a.m.18 views

Trojan disguised of the four magic-vulnerability warning-the black bar safety net

The netizens world has introduced a very powerful Trojan horse, I believe everyone has to find their own“a thousand miles good horse”。 However, in the use of Trojan in the process, we often encounter a very substantive issues, that is, the Trojanserviceend of the anti-killing. Such asWebGod steal...

0.7AI score
Exploits0
myhack58
myhack58added 2005/11/08 12:0 a.m.47 views

The most classic hack introductory textbook-vulnerability warning-the black bar safety net

The first section, hack the type and behavior of the To my understanding, the“hackers”generally should be divided into“positive”and“evil”Categories, the decent hackers rely on their own knowledge to help system administrators to identify system vulnerabilities and be improved, while the evil...

7.6AI score
Exploits0
Rows per page
Query Builder