Lucene search
K

46 matches found

The Hacker News
The Hacker News
added yesterday10 views

CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks

Cybersecurity researchers have flagged a new macOS information stealer called CrashStealer that's capable of harvesting sensitive data from compromised systems. Unlike other information stealers that are built on AppleScript droppers or Objective-C-based wrappers, CrashStealer is implemented in...

6.2AI score
Exploits0
Snyk
Snyk
added 2026/03/19 11:0 p.m.4 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. The publishing pipeline of this package was compromised as the result of Trivy's GitHub Actions compromise and a malicious versions were released on NPM. They contain malicious code, and its content was NOT yet...

9.8CVSS5.8AI score
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-0152

Malware in sbrugna...

7.5CVSS6.1AI score0.04146EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-0153

Malware in sbrugna...

7.5CVSS6.1AI score0.03728EPSS
Exploits0References6
Patchstack
Patchstack
added 2024/05/03 8:15 a.m.6 views

WordPress GP Unique ID plugin <= 1.5.5 - Unauthenticated Form Submission Unique ID Modification vulnerability

Unauthenticated Form Submission Unique ID Modification vulnerability discovered by Karl Emil Nikka in WordPress Plugin Gravity Forms Unique ID versions = 1.5.5...

5.3CVSS7AI score0.0103EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/02/05 12:0 a.m.11 views

WordPress LearnDash LMS Plugin <= 4.10.1 is vulnerable to Sensitive Data Exposure

Software LearnDash LMS Type Plugin Vulnerable versions = 4.10.1 Fixed in 4.10.2 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1210 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID eac39e71b914 Credits Karl Emil Nikka Required...

5.3CVSS6.5AI score0.02027EPSS
Exploits3References2Affected Software1
Openbugbounty
Openbugbounty
added 2023/09/06 11:48 p.m.6 views

ra-emil-oswald.de Cross Site Scripting vulnerability OBB-3653397

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/08/27 5:50 p.m.10 views

emil-a-peters.de Cross Site Scripting vulnerability OBB-3621247

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/04/29 8:9 a.m.10 views

emil-muenzenmaier.de Cross Site Scripting vulnerability OBB-3279824

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.3 views

SUSE CVE-2004-0153

Multiple format string vulnerabilities in emil 2.1.0 and earlier may allow remote attackers to execute arbitrary code by triggering certain error messages...

7.5CVSS8AI score0.03728EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.6 views

SUSE CVE-2004-0152

Multiple stack-based buffer overflows in 1 the encodemime function, 2 the encodeuuencode function, 3 or the decodeuuencode function for emil 2.1.0 and earlier allow remote attackers to execute arbitrary code via e-mail messages containing attachments with filenames...

7.5CVSS8.2AI score0.04146EPSS
Exploits0References5
Openbugbounty
Openbugbounty
added 2022/04/24 7:28 a.m.10 views

bugs.emilschlampp.de Cross Site Scripting vulnerability OBB-2546976

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2022/03/02 11:41 p.m.15 views

emil-kritzky.de Improper Access Control vulnerability OBB-2394065

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/01/16 2:29 p.m.10 views

emil-a-peters.de Cross Site Scripting vulnerability OBB-2337553

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Patchstack
Patchstack
added 2021/11/30 12:0 a.m.63 views

WordPress LiteSpeed Cache plugin <= 4.4.3 - IP Check Bypass to Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability

IP Check Bypass to Unauthenticated Stored Cross-Site Scripting XSS vulnerability discovered by Emil Kylander in WordPress LiteSpeed Cache plugin versions = 4.4.3. Solution Update the WordPress LiteSpeed Cache plugin to the latest available version at least 4.4.4...

6.1CVSS2.2AI score0.01216EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2021/11/30 12:0 a.m.26 views

WordPress LiteSpeed Cache plugin <= 4.4.3 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Emil Kylander in WordPress LiteSpeed Cache plugin versions = 4.4.3. Solution Update the WordPress LiteSpeed Cache plugin to the latest available version at least 4.4.4...

4.8CVSS2.1AI score0.00654EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2021/07/21 12:0 a.m.21 views

WordPress Maintenance plugin <= 4.02 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Emil Kylander in WordPress Maintenance plugin versions = 4.02. Solution Update the WordPress Maintenance plugin to the latest available version at least 4.03...

4.8CVSS2.3AI score0.00617EPSS
Exploits2References4Affected Software1
Openbugbounty
Openbugbounty
added 2020/11/07 2:7 p.m.9 views

emil-webdesign.net Cross Site Scripting vulnerability OBB-1491135

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Wallarm Lab
Wallarm Lab
added 2020/10/15 3:29 p.m.79 views

Cloudflare fixed an HTTP/2 smuggling vulnerability

On July 14th, Emil Lerner found and explored new ways of HTTP desync/smuggling exploitation based on HTTP/2 request processing issues. He submitted the bug to the Cloudflare security team through their bug bounty program. This security issue took Cloudflare a week to fix and was completed on July...

0.1AI score
Exploits0
0day.today
0day.today
added 2015/08/29 12:0 a.m.57 views

Apple OS X Entitlements Rootpipe Privilege Escalation Exploit

This Metasploit module exploits the rootpipe vulnerability and bypasses Apple's initial fix for the issue by injecting code into a process with the 'admin.writeconfig' entitlement. This module requires Metasploit: http://metasploit.com/download Current source:...

7.2CVSS0.9AI score0.05812EPSS
Exploits5
Rows per page
Query Builder