4420 matches found
Teatime - An RPC Attack Framework For Blockchain Nodes
Teatime is an RPC attack framework aimed at making it easy to spot misconfigurations in blockchain nodes. It detects a large variety of issues, ranging from information leaks to open accounts, and configuration manipulation. The goal is to enable tools scanning for vulnerable nodes and minimizing...
SUSE-SU-2020:2173-2 Security update for perl-XML-Twig
This update for perl-XML-Twig fixes the following issues: - Security fix bsc1008644, CVE-2016-9180 Added: the noxxe option to XML::Twig::new, which causes the parse to fail if external entities are used to prevent malicious XML to access the filesystem. Setting expandexternalents to 0 or -1...
Pillager - Filesystems For Sensitive Information With Go
Pillager is designed to provide a simple means of leveraging Go's strong concurrency model to recursively search directories for sensitive information in files. Pillager does this by standing on the shoulders of a few giants. Once pillager finds files that match the specified pattern, the file is...
[SECURITY] Fedora 33 Update: postgresql-12.6-1.fc33
PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...
[SECURITY] Fedora 33 Update: containers-common-1-4.fc33
This package contains common configuration files and documentation for cont ainer tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from p rojects which are vendored into Podman, Buildah, Skopeo, etc. but they are not pack ag...
[SECURITY] Fedora 32 Update: postgresql-12.6-1.fc32
PostgreSQL is an advanced Object-Relational database management system DBM S. The base postgresql package contains the client programs that you'll need to access a PostgreSQL DBMS server, as well as HTML documentation for the whole system. These client programs can be located on the same machine ...
OPENSUSE-SU-2021:0338-1 Security update for python-djangorestframework
This update for python-djangorestframework fixes the following issues: Update to 3.11.2 Security: Drop urlizequotedlinks template tag in favour of Django's built-in urlize. Removes a XSS vulnerability for some kinds of content in the browsable API. boo1177205, CVE-2020-25626 update Django for API...
StackVec::extend can write out of bounds when size_hint is incorrect
StackVec::extend used the lower and upper bounds from an Iterator's sizehint to determine how many items to push into the stack based vector. If the sizehint implementation returned a lower bound that was larger than the upper bound, StackVec would write out of bounds and overwrite memory on the...
RUSTSEC-2021-0048 StackVec::extend can write out of bounds when size_hint is incorrect
StackVec::extend used the lower and upper bounds from an Iterator's sizehint to determine how many items to push into the stack based vector. If the sizehint implementation returned a lower bound that was larger than the upper bound, StackVec would write out of bounds and overwrite memory on the...
CVE-2021-25299
creationtimestamp| type| source ---|---|--- 2021-02-15 16:46:42+00:00| seen| https://t.me/cibsecurity/23592 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-25299.yaml...
OSV - Open Source Vulnerability DB And Triage Service
OSV is a vulnerability database and triage infrastructure for open source projects aimed at helping both open source maintainers and consumers of open source. For open source maintainers, OSV's automation helps reduce the burden of triage. Each vulnerability undergoes automated bisection and impa...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0317
An update of 'elasticsearch', 'python3' packages of Photon OS has been released...
CVE-2021-3293
creationtimestamp| type| source ---|---|--- 2021-02-08 18:39:29+00:00| seen| https://t.me/cibsecurity/23214 2023-04-27 09:58:59+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-3293.yaml...
Rockset: Leaking Rockset API key on Github
Summary: We all know that Github is great, but it runs the risk of some credentials being revealed by mistake. In this case I found a Rockset API key, This API key is not in the current code, but it is visible in an old commit. Steps To Reproduce: You can find the leak in this link :...
Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)
InsightVM and Nexpose customers can now harness the power of the Metasploit community to assess their exposure to the latest threats. The Feb. 3 release of InsightVM and Nexpose version 6.6.63 includes a beta version of the Metasploit Remote Check Service, bringing Metasploit check method...
CVE-2020-2851
creationtimestamp| type| source ---|---|--- 2021-02-03 12:43:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2629 2024-01-08 15:34:11+00:00| seen| https://t.me/arpsyndicate/2654 2025-05-14 23:15:09+00:00| seen|...
Kubernetes: KOPS documentation references domains which were not registered
Summary: While researching the kubernetes documentation, I found that the KOPS project's Route53 configuration references dangling DNS servers. I was able to register 3 / 4 of these domain names. I was also able to verify that some companies have been using this configuration, making them...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0358
An update of 'sudo' packages of Photon OS has been released...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0315
An update of 'sudo', 'glibc' packages of Photon OS has been released...
openSUSE Security Update : virtualbox (openSUSE-2021-165)
This update for virtualbox fixes the following issues : Version update to 6.1.18 released January 19 2021 This is a maintenance release. The following items were fixed and/or added : - Nested VM: Fixed hangs when executing SMP nested-guests under certain conditions on Intel hosts bug 19315, 19561...