CVE-2023-37274 Python code execution sandbox escape in non-docker version in Auto-GPT

Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. When Auto-GPT is executed directly on the host system via the provided run.sh or run.bat files, custom Python code execution is sandboxed using a temporary dedicated docker container which...

CVE-2023-37273

CVE-2023-37273 affects Auto-GPT prior to 0.4.3. The root cause is a docker-compose.yml in the repo root mounted into the container without write protection, allowing malicious Python code via execute_python_file/execute_python_code to overwrite the file and abuse it to gain control of the host on...

CVE-2023-37273 Docker escape in Auto-GPT when running from docker-compose.yml included in git repo

Auto-GPT is an experimental open-source application showcasing the capabilities of the GPT-4 language model. Running Auto-GPT version prior to 0.4.3 by cloning the git repo and executing docker compose run auto-gpt in the repo root uses a different docker-compose.yml file from the one suggested i...

TeamTNT's Silentbob Botnet Infecting 196 Hosts in Cloud Attack Campaign

As many as 196 hosts have been infected as part of an aggressive cloud campaign mounted by the TeamTNT group called Silentbob. "The botnet run by TeamTNT has set its sights on Docker and Kubernetes environments, Redis servers, Postgres databases, Hadoop clusters, Tomcat and Nginx servers, Weave...

Docker HTTP REST API Public WAN (Internet) / Public LAN Accessible without Authentication

The script checks if the target host is exposing the Docker HTTP REST API endpoints to a public WAN Internet / public LAN without authentication. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

Graylog server has partial path traversal vulnerability in Support Bundle feature

A partial path traversal vulnerability exists in Graylog's Support Bundle feature. The vulnerability is caused by incorrect user input validation in an HTTP API resource. Thanks to weiweiwei9811 for reporting this vulnerability and providing detailed information. Impact Graylog's Support Bundle...

Exploit for Code Injection in Symfony Twig

CVE-2022-23614 Proof of concept PoC for CVE-2022-23614ht...

CVE-2023-36816

The CVE concerns the 2FAuth web application, where an XSS vulnerability exists in the account/service field. According to the provided records, the issue was demonstrated in a docker-compose test environment and has been patched as of version 4.0.3. The root cause is an input handling flaw that a...

Exploit for OS Command Injection in Cacti

Cacti v1.2.24 authenticated command injection CVE-2023-39362...

CVE-2023-34844

CVE-2023-34844 affects Play With Docker, where versions prior to 0.0.2 expose an insecure CAP_SYS_ADMIN privileged mode allowing a container escape. The root cause is improper privilege handling that enables elevation from within a container to host context. Documented impact is privileged escape...

DLA-3473-1 docker-registry - security update

Bulletin has no description...

ownCloud: Cross-Site Request Forgery

A cross-site request forgery vulnerability was found in an application. Requests were not validating cross-site request forgery tokens, allowing an unauthorized user to perform administration functions by inserting valid session cookies into arbitrary requests. This could have enabled an attacker...

Updated docker-docker-registry packages fix security vulnerability

Denail of service through excessive use of memory. CVE-2023-2253...

Using Spring for GraphQL with Spring Data Neo4j

Introduction This is a guest blog post by Gerrit Meier from Neo4j who maintains the Spring Data Neo4j module. A few weeks ago version 1.2.0 of Spring for GraphQL was released with a bunch of new features. This also includes even better integration with Spring Data modules. Motivated by those...

Exploit for Code Injection in Vmware Spring_Framework

Spring4Shell Spring4Shell CVE-2022-22965 Proof Of Concept wi...

Exploit for Code Injection in Vmware Spring_Framework

Spring4Shell Spring4Shell CVE-2022-22965 Proof Of Concept wi...

Exploit for Path Traversal in Igniterealtime Openfire

CVE-2023-32315 Openfire Console Authentication Bypass Vulnerab...

Exploit for SQL Injection in Osgeo Geoserver

CVE-2023-25157-checker A script, written in golang. POC for CV...

PT-2023-23970 · Ckan · Ckan

Name of the Vulnerable Software and Affected Versions: CKAN versions prior to 2.9.9 CKAN versions prior to 2.10.1 Description: CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user, equivalent to www-data, owned co...

Exploit for Cross-site Scripting in Ourphp

create a vulnerable Docker environment that is susceptible to...