Lucene search
K

367 matches found

Cvelist
Cvelist
added 2024/05/27 5:17 p.m.40 views

CVE-2024-36105 dbt allows Binding to an Unrestricted IP Address via socketsocket

dbt enables data analysts and engineers to transform their data using the same practices that software engineers use to build applications. Prior to versions 1.6.15, 1.7.15, and 1.8.1, Binding to INADDRANY 0.0.0.0 or IN6ADDRANY :: exposes an application on all network interfaces, increasing the...

5.3CVSS5.2AI score0.0071EPSS
Exploits0References11
HackRead
HackRead
added 2024/05/23 6:3 p.m.15 views

WhatsApp Engineers Fear Encryption Flaw Exposes User Data, Memo

By Deeba Ahmed Is your WhatsApp privacy a myth? New reports reveal a vulnerability that could expose who you message to government agents. This is a post from HackRead.com Read the original post: WhatsApp Engineers Fear Encryption Flaw Exposes User Data, Memo...

7.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2024/03/25 11:4 a.m.15 views

Licensing AI Engineers

The debate over professionalizing software engineers is decades old. The basic idea is that, like lawyers and architects, there should be some professional licensing requirement for software engineers. Heres a law journal article recommending the same idea for AI engineers. This Article proposes...

6.8AI score
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2024/03/04 6:19 a.m.18 views

Persistence – Visual Studio Code Extensions

It is not uncommon developers or users responsible to write code i.e. detection engineers using Sigma to utilize Visual Studio Code as their code editor.… Continue reading - Persistence - Visual Studio Code Extensions...

7.7AI score
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2024/03/04 6:19 a.m.14 views

Persistence – Visual Studio Code Extensions

It is not uncommon developers or users responsible to write code i.e. detection engineers using Sigma to utilize Visual Studio Code as their code editor.… Continue reading - Persistence - Visual Studio Code Extensions...

7.7AI score
Exploits0
Exploit DB
Exploit DB
added 2024/01/31 12:0 a.m.265 views

RoyalTSX 6.0.1 - RTSZ File Handling Heap Memory Corruption PoC

RoyalTSX 6.0.1 RTSZ File Handling Heap Memory Corruption PoC Vendor: Royal Apps GmbH Web page: https://www.royalapps.com Affected version: 6.0.1.1000 macOS Summary: Royal TS is an ideal tool for system engineers and other IT professionals who need remote access to systems with different protocols...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/01/17 12:0 a.m.7 views

The vulnerability of the /admin/ file of the Admin Login component of the Engineers Online Portal allows a malicious user to execute arbitrary SQL queries.

The vulnerability of the /admin/ file of the Admin Login component of the Engineers Online Portal is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

10CVSS7.6AI score0.00602EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/01/09 11:15 p.m.3 views

CVE-2024-0351

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. This affects an unknown part. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told...

3.5CVSS4.5AI score0.00591EPSS
Exploits1References3
NVD
NVD
added 2024/01/09 11:15 p.m.22 views

CVE-2024-0351

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. This affects an unknown part. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told...

3.5CVSS4AI score0.00591EPSS
Exploits1References3
NVD
NVD
added 2024/01/09 11:15 p.m.14 views

CVE-2024-0349

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to sensitive cookie without secure attribute. The attack can be launched remotely. The complexity of an...

5.3CVSS4.6AI score0.00385EPSS
Exploits0References3
OSV
OSV
added 2024/01/09 11:15 p.m.5 views

CVE-2024-0349

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to sensitive cookie without secure attribute. The attack can be launched remotely. The complexity of an...

5.3CVSS4.3AI score0.00385EPSS
Exploits0References3
OSV
OSV
added 2024/01/09 11:15 p.m.4 views

CVE-2024-0350

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The...

6.5CVSS4.4AI score0.00478EPSS
Exploits1References3
NVD
NVD
added 2024/01/09 11:15 p.m.18 views

CVE-2024-0350

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The...

6.5CVSS4.7AI score0.00478EPSS
Exploits1References3
Prion
Prion
added 2024/01/09 11:15 p.m.23 views

Design/Logic Flaw

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to sensitive cookie without secure attribute. The attack can be launched remotely. The complexity of an...

2.6CVSS7AI score0.00385EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2024/01/09 11:15 p.m.26 views

Design/Logic Flaw

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The...

2.1CVSS7.1AI score0.00478EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2024/01/09 11:15 p.m.19 views

Design/Logic Flaw

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. This affects an unknown part. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told...

2.6CVSS7.1AI score0.00591EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/09 11:0 p.m.31 views

CVE-2024-0351 SourceCodester Engineers Online Portal session fixiation

A vulnerability classified as problematic has been found in SourceCodester Engineers Online Portal 1.0. This affects an unknown part. The manipulation leads to session fixiation. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability is told...

3.1CVSS4.5AI score0.00591EPSS
Exploits1References3
CVE
CVE
added 2024/01/09 11:0 p.m.51 views

CVE-2024-0351

SourceCodester Engineers Online Portal 1.0 contains a session fixation vulnerability. The issue arises from session handling allowing remote initiation and requiring user interaction to exploit. No specific vulnerable component/version details beyond 1.0 are provided; remediation is not described...

3.5CVSS4.3AI score0.00591EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/09 10:31 p.m.32 views

CVE-2024-0350 SourceCodester Engineers Online Portal session expiration

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The...

3.1CVSS6.7AI score0.00478EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/09 10:31 p.m.6 views

CVE-2024-0350 SourceCodester Engineers Online Portal session expiration

A vulnerability was found in SourceCodester Engineers Online Portal 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to session expiration. The attack may be launched remotely. The complexity of an attack is rather high. The...

3.1CVSS6.5AI score0.00478EPSS
Exploits1References3
Rows per page
Query Builder