116 matches found
CVE-2026-32283 vulnerabilities
Vulnerabilities for packages: image-factory-fips, infinispan-operator, kubevela-fips, aws-flb-firehose, amazon-ecs-agent-fips, crossplane-provider-keycloak, prometheus-elasticsearch-exporter-fips, ytt, nerdctl, sriov-network-device-plugin-fips, yace, crossplane-provider-azure-authorization,...
GHSA-9H8M-3FM2-QJRQ vulnerabilities
Vulnerabilities for packages: kubevela-fips, temporal-fips, livekit-cli, trivy-operator-fips, prometheus-adapter-fips, coredns, terraform-provider-google, volsync-fips, kube-metrics-adapter, gitlab-operator-fips, fluent-bit-plugin-loki, envoy-gateway, jaeger-operator-fips, docker-fips,...
Oracle E-Business Suite CVE-2025-61882 RCE
This module exploits CVE-2025-61882 in Oracle E-Business Suite by combining SSRF, Path Traversal, HTTP request smuggling and XSLT injection. The exploit hosts a malicious XSL file that the target will fetch and process, leading to RCE. This module provides an interactive shell session. Vulnerable...
GHSA-5MH9-3JWC-RP59 vulnerabilities
Vulnerabilities for packages: image-factory-fips, infinispan-operator, temporal-fips, external-secrets-operator-fips, trivy-operator-fips, aws-efs-csi-driver-fips, prometheus-adapter-fips, falco-no-driver, amazon-cloudwatch-agent-fips, s5cmd, terraform-provider-google, kube-metrics-adapter,...
Exploit for Missing Authentication for Critical Function in Oracle Marketing
✨ CVE-2025-62481 — Oracle Marketing Administration EBS Cri...
Exploit for Improper Authentication in Oracle Concurrent_Processing
CVE‑2025‑61882 Scan/Exploit ⚠️Legal Disclaimer Legal...
CVE-2025-61753
Vulnerability in the Oracle Scripting product of Oracle E-Business Suite component: Miscellaneous. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Successful...
Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets
The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added five security flaws to its Known Exploited Vulnerabilities KEV Catalog, officially confirming a recently disclosed vulnerability impacting Oracle E-Business Suite EBS has been weaponized in real-world attacks. The...
⚡ Weekly Recap: WhatsApp Worm, Critical CVEs, Oracle 0-Day, Ransomware Cartel & More
Every week, the cyber world reminds us that silence doesn't mean safety. Attacks often begin quietly — one unpatched flaw, one overlooked credential, one backup left unencrypted. By the time alarms sound, the damage is done. This week's edition looks at how attackers are changing the game — linki...
EUVD-2017-18214
Malware in sbrugna...
CVE-2025-30731
Vulnerability in the Oracle Applications Technology Stack product of Oracle E-Business Suite component: Configuration. Supported versions that are affected are 12.2.3-12.2.14. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle...
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: falco, dask-gateway, amass, govulncheck, aws-load-balancer-controller, kine, kubeadm-bootstrap-controller, helm, oras, render-template, crossplane-provider-azure, velero, kubernetes-dns-node-cache, kustomize, go-md2man, kubewatch, nri-kafka, datadog-agent, vexctl,...
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: falco, dask-gateway, amass, govulncheck, aws-load-balancer-controller, kine, kubeadm-bootstrap-controller, helm, oras, render-template, crossplane-provider-azure, velero, kubernetes-dns-node-cache, kustomize, go-md2man, kubewatch, nri-kafka, datadog-agent, vexctl,...
GHSA-49GW-VXVF-FC2G vulnerabilities
Vulnerabilities for packages: amass, harbor-scanner-trivy, nri-postgresql, helm, velero, kyverno-policy-reporter-ui, kubernetes-dns-node-cache, fluent-bit-plugin-loki, kubewatch, datadog-agent, kubernetes-dashboard, confluent-common-docker, rclone, kaniko, swagger, crossplane-provider-aws,...
GHSA-PXHW-596R-RWQ5 vulnerabilities
Vulnerabilities for packages: aws-efs-csi-driver, kubernetes, ip-masq-agent, spark-operator, local-static-provisioner, argocd-image-updater, nodetaint, kubernetes-csi-driver-hostpath, kubernetes-dns-node-cache, kubeflow-pipelines...
CVE-2024-3177 vulnerabilities
Vulnerabilities for packages: aws-efs-csi-driver, kubernetes, ip-masq-agent, spark-operator, local-static-provisioner, argocd-image-updater, nodetaint, kubernetes-csi-driver-hostpath, kubernetes-dns-node-cache, kubeflow-pipelines...
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: crossplane-provider-family-aws, falco, amass, crossplane-provider-aws-kms, aws-load-balancer-controller, kine, kubeadm-bootstrap-controller, helm, falcoctl, crossplane-provider-azure, velero, restic, crossplane-provider-azure-authorization, kyverno-policy-reporter-ui...
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: temporal-fips, prometheus-elasticsearch-exporter-fips, nerdctl, crossplane-provider-azure-authorization, pgpool2exporter-fips, nuclei, aws-efs-csi-driver-fips, prometheus-adapter-fips, coredns, terraform-provider-google, kots, prometheus-pushgateway-fips,...
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: falco, dask-gateway, amass, govulncheck, aws-load-balancer-controller, kine, kubeadm-bootstrap-controller, helm, oras, render-template, crossplane-provider-azure, velero, kubernetes-dns-node-cache, kustomize, go-md2man, kubewatch, nri-kafka, datadog-agent, vexctl,...
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: bank-vaults-fips, go-bindata, prometheus-stackdriver-exporter, go-md2man, aws-flb-firehose, kube-logging-logging-operator, aactl, go-licenses, cass-operator-fips, k3d, smarter-device-manager, smarter-device-manager-fips, kubernetes-csi-livenessprobe, sonobuoy,...