Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-18034

Malware in sbrugna...

5.5CVSS5.4AI score0.03663EPSS
Exploits5References4
Openbugbounty
Openbugbounty
added 2023/10/25 12:8 a.m.11 views

regal-diving.co.uk Cross Site Scripting vulnerability OBB-3765181

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Spring Security Advisories
Spring Security Advisories
added 2022/10/06 7:0 a.m.13 views

A Bootiful Podcast: Spring and Java community legend Marten Deinum

Hi, Spring fans! In this installment, Josh Long @starbuxman talks to longtime Spring community member and legend Marten Deinum @mdeinum about scuba diving, software, Spring, community, and more. Also: I fixed the odd silence in the middle of the last few episodes! thanks for suffering through it...

0.6AI score
Exploits0
Openbugbounty
Openbugbounty
added 2021/10/04 9:9 a.m.17 views

wts-diving-center.com Cross Site Scripting vulnerability OBB-2155376

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Talos Blog
Talos Blog
added 2021/03/08 9:15 a.m.14 views

Domain dumpster diving

By Jaeson Schultz. Dumpster diving — searching through the trash looking for items of value — has long been a staple of hacking culture. In the 1995 movie "Hackers," Acid Burn and Crash Override are seen dumpster diving for information they can use to help them "hack the Gibson." Of course, not a...

1.5AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/12/11 10:10 p.m.38 views

Friday Squid Blogging: Newly Identified Ichthyosaur Species Probably Ate Squid

This is a deep-diving species that "fed on small prey items such as squid." Academic paper. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

1.5AI score
Exploits0
0day.today
0day.today
added 2017/11/28 12:0 a.m.44 views

Diving Log 6.0 - XML External Entity Injection Vulnerability

Exploit for windows platform in category local exploits + Exploit Title: Diving Log 6.0 XXE Injection + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt + Version...

4.3CVSS5.7AI score0.03663EPSS
Exploits5
Packet Storm
Packet Storm
added 2017/11/27 12:0 a.m.39 views

Diving Log 6.0 XML External Entity Injection

Exploit Title: Diving Log 6.0 XXE Injection + Date: 27-11-2017 + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt + Version: 6.0 + Tested on: Windows 7 SP1,...

4.3CVSS0.1AI score0.03663EPSS
Exploits5
exploitpack
exploitpack
added 2017/11/27 12:0 a.m.24 views

Diving Log 6.0 - XML External Entity Injection

Diving Log 6.0 - XML External Entity Injection + Exploit Title: Diving Log 6.0 XXE Injection + Date: 27-11-2017 + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt...

4.3CVSS0.1AI score0.03663EPSS
Exploits5
Exploit DB
Exploit DB
added 2017/11/27 12:0 a.m.64 views

Diving Log 6.0 - XML External Entity Injection

Exploit Title: Diving Log 6.0 XXE Injection + Date: 27-11-2017 + Exploit Author: Trent Gordon + Vendor Homepage: http://www.divinglog.de + Software Link: http://www.divinglog.de/english/download/ + Disclosed at: https://thenopsled.com/divinglog.txt + Version: 6.0 + Tested on: Windows 7 SP1,...

5.5CVSS5.5AI score0.03663EPSS
Exploits5
CNVD
CNVD
added 2017/09/12 12:0 a.m.3 views

Diving Log dive.xml File Information Disclosure Vulnerability

Diving Log is a dive log management software. The software supports data import, log printing and log sharing. A security vulnerability exists in Diving Log version 6.0. A remote attacker can exploit this vulnerability to view local files with the help of a specially crafted dive.xml file...

5.5CVSS5.2AI score0.03663EPSS
Exploits5References1
OSV
OSV
added 2017/09/08 10:29 a.m.3 views

CVE-2017-9095

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

5.5CVSS5.8AI score0.03663EPSS
Exploits5References2
Prion
Prion
added 2017/09/08 10:29 a.m.16 views

Xxe

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

4.3CVSS5.2AI score0.03663EPSS
Exploits5References2Affected Software1
NVD
NVD
added 2017/09/08 10:29 a.m.24 views

CVE-2017-9095

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

5.5CVSS5.3AI score0.03663EPSS
Exploits5References2
CVE
CVE
added 2017/09/08 10:0 a.m.64 views

CVE-2017-9095

CVE-2017-9095 affects Diving Log 6.0 and is an XML External Entity (XXE) vulnerability in the dive.xml import workflow (Subsurface import). An attacker can disclose local files via a crafted dive.xml file. Public exploit references document an XXE payload and steps to exfiltrate data to a remote ...

5.5CVSS5.2AI score0.03663EPSS
Exploits5References2Affected Software1
Cvelist
Cvelist
added 2017/09/08 10:0 a.m.25 views

CVE-2017-9095

XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import...

5.2AI score0.03663EPSS
Exploits5References2
Positive Technologies
Positive Technologies
added 2017/09/08 12:0 a.m.6 views

PT-2017-18698 · Diving Log · Diving Log

Name of the Vulnerable Software and Affected Versions: Diving Log version 6.0 Description: The issue allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import. This is related to an XXE XML External Entity issue. Recommendations: F...

5.5CVSS5.3AI score0.03663EPSS
Exploits5References3
seebug.org
seebug.org
added 2017/02/10 12:0 a.m.84 views

F5 TLS vulnerability (CVE-2016-9244) (Ticketbleed)

Ticketbleed CVE-2016-9244 is a software vulnerability in the TLS stack of certain F5 products that allows a remote attacker to extract up to 31 bytes of uninitialized memory at a time, which can contain any kind of random sensitive information, like in Heartbleed. If you suspect you might be...

5CVSS7.8AI score0.74EPSS
Exploits7
The Coalfire Blog
The Coalfire Blog
added 2016/10/27 10:4 a.m.14 views

Ghosts in the Bank

It was a dark night. A car pulled up in the parking space next to me and quickly extinguished his lights. I looked out the my window and saw the driver. He gave me a quick nod and we exited our cars. Opening the trunk I pulled out my tools for the night. A backpack full of trash bags, a flash...

0.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/04/19 9:12 p.m.6 views

diving-bosna.com.ba XSS vulnerability

Open Bug Bounty ID: OBB-147452 Description| Value ---|--- Affected Website:| diving-bosna.com.ba Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder