Lucene search
K

4420 matches found

Kitploit
Kitploit
added 2021/03/03 8:30 p.m.155 views

Teatime - An RPC Attack Framework For Blockchain Nodes

Teatime is an RPC attack framework aimed at making it easy to spot misconfigurations in blockchain nodes. It detects a large variety of issues, ranging from information leaks to open accounts, and configuration manipulation. The goal is to enable tools scanning for vulnerable nodes and minimizing...

7.1AI score
Exploits0References1
OSV
OSV
added 2021/03/01 4:20 p.m.2 views

SUSE-SU-2020:2173-2 Security update for perl-XML-Twig

This update for perl-XML-Twig fixes the following issues: - Security fix bsc1008644, CVE-2016-9180 Added: the noxxe option to XML::Twig::new, which causes the parse to fail if external entities are used to prevent malicious XML to access the filesystem. Setting expandexternalents to 0 or -1...

9.1CVSS9.2AI score0.03542EPSS
Exploits0References3
Kitploit
Kitploit
added 2021/02/27 8:30 p.m.82 views

Pillager - Filesystems For Sensitive Information With Go

Pillager is designed to provide a simple means of leveraging Go's strong concurrency model to recursively search directories for sensitive information in files. Pillager does this by standing on the shoulders of a few giants. Once pillager finds files that match the specified pattern, the file is...

7AI score
Exploits0References10
Fedora
Fedora
added 2021/02/26 1:10 a.m.83 views

[SECURITY] Fedora 33 Update: postgresql-12.6-1.fc33

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

8.8CVSS8.2AI score0.4644EPSS
Exploits0
Fedora
Fedora
added 2021/02/26 1:9 a.m.68 views

[SECURITY] Fedora 33 Update: containers-common-1-4.fc33

This package contains common configuration files and documentation for cont ainer tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from p rojects which are vendored into Podman, Buildah, Skopeo, etc. but they are not pack ag...

7.2CVSS1.4AI score0.01525EPSS
Exploits0
Fedora
Fedora
added 2021/02/26 1:9 a.m.37 views

[SECURITY] Fedora 32 Update: postgresql-12.6-1.fc32

PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...

0.8AI score
Exploits0
OSV
OSV
added 2021/02/25 9:5 a.m.6 views

OPENSUSE-SU-2021:0338-1 Security update for python-djangorestframework

This update for python-djangorestframework fixes the following issues: Update to 3.11.2 Security: Drop urlizequotedlinks template tag in favour of Django's built-in urlize. Removes a XSS vulnerability for some kinds of content in the browsable API. boo1177205, CVE-2020-25626 update Django for API...

6.1CVSS5.8AI score0.01286EPSS
Exploits0References3
RustSec
RustSec
added 2021/02/19 12:0 p.m.27 views

StackVec::extend can write out of bounds when size_hint is incorrect

StackVec::extend used the lower and upper bounds from an Iterator's sizehint to determine how many items to push into the stack based vector. If the sizehint implementation returned a lower bound that was larger than the upper bound, StackVec would write out of bounds and overwrite memory on the...

7.5CVSS2.8AI score0.01025EPSS
Exploits1Affected Software1
OSV
OSV
added 2021/02/19 12:0 p.m.23 views

RUSTSEC-2021-0048 StackVec::extend can write out of bounds when size_hint is incorrect

StackVec::extend used the lower and upper bounds from an Iterator's sizehint to determine how many items to push into the stack based vector. If the sizehint implementation returned a lower bound that was larger than the upper bound, StackVec would write out of bounds and overwrite memory on the...

7.3CVSS7.2AI score0.01025EPSS
Exploits1References3
Circl
Circl
added 2021/02/15 4:46 p.m.8 views

CVE-2021-25299

creationtimestamp| type| source ---|---|--- 2021-02-15 16:46:42+00:00| seen| https://t.me/cibsecurity/23592 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-25299.yaml...

6.1CVSS7AI score0.96861EPSS
Exploits3References2
Kitploit
Kitploit
added 2021/02/15 11:30 a.m.63 views

OSV - Open Source Vulnerability DB And Triage Service

OSV is a vulnerability database and triage infrastructure for open source projects aimed at helping both open source maintainers and consumers of open source. For open source maintainers, OSV's automation helps reduce the burden of triage. Each vulnerability undergoes automated bisection and impa...

7.3AI score
Exploits0References4
Photon
Photon
added 2021/02/11 12:0 a.m.44 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0317

An update of 'elasticsearch', 'python3' packages of Photon OS has been released...

7.5CVSS0.9AI score0.23293EPSS
Exploits1
Circl
Circl
added 2021/02/08 6:39 p.m.8 views

CVE-2021-3293

creationtimestamp| type| source ---|---|--- 2021-02-08 18:39:29+00:00| seen| https://t.me/cibsecurity/23214 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-3293.yaml...

5.3CVSS5.5AI score0.17436EPSS
Exploits1References2
Hacker One
Hacker One
added 2021/02/03 5:54 p.m.104 views

Rockset: Leaking Rockset API key on Github

Summary: We all know that Github is great, but it runs the risk of some credentials being revealed by mistake. In this case I found a Rockset API key, This API key is not in the current code, but it is visible in an old commit. Steps To Reproduce: You can find the leak in this link :...

6.9AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/02/03 3:23 p.m.66 views

Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)

InsightVM and Nexpose customers can now harness the power of the Metasploit community to assess their exposure to the latest threats. The Feb. 3 release of InsightVM and Nexpose version 6.6.63 includes a beta version of the Metasploit Remote Check Service, bringing Metasploit check method...

2.9AI score
Exploits0
Circl
Circl
added 2021/02/03 12:43 p.m.40 views

CVE-2020-2851

creationtimestamp| type| source ---|---|--- 2021-02-03 12:43:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2629 2024-01-08 15:34:11+00:00| seen| https://t.me/arpsyndicate/2654 2025-05-14 23:15:09+00:00| seen|...

7.8CVSS7.7AI score0.0056EPSS
Exploits3References3
Hacker One
Hacker One
added 2021/02/02 1:35 p.m.20 views

Kubernetes: KOPS documentation references domains which were not registered

Summary: While researching the kubernetes documentation, I found that the KOPS project's Route53 configuration references dangling DNS servers. I was able to register 3 / 4 of these domain names. I was also able to verify that some companies have been using this configuration, making them...

1AI score
Exploits0
Photon
Photon
added 2021/01/29 12:0 a.m.47 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0358

An update of 'sudo' packages of Photon OS has been released...

7.2CVSS0.9AI score0.99295EPSS
Exploits81
Photon
Photon
added 2021/01/28 12:0 a.m.46 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0315

An update of 'sudo', 'glibc' packages of Photon OS has been released...

7.2CVSS0.9AI score0.99295EPSS
Exploits81
Tenable Nessus
Tenable Nessus
added 2021/01/26 12:0 a.m.33 views

openSUSE Security Update : virtualbox (openSUSE-2021-165)

This update for virtualbox fixes the following issues : Version update to 6.1.18 released January 19 2021 This is a maintenance release. The following items were fixed and/or added : - Nested VM: Fixed hangs when executing SMP nested-guests under certain conditions on Intel hosts bug 19315, 19561...

8.2CVSS7.4AI score0.00516EPSS
Exploits0References4
Rows per page
Query Builder