Lucene search
K

722 matches found

OSV
OSV
added 2024/09/24 6:57 a.m.10 views

MAL-2024-12266 Malicious code in evil-select-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 db8225867ca74c2a2192382dc4abcc5119fb1ac07049412245e3a686524138f8 Package description attempts to pentest/exploit the PyPI web interface. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but als...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/09/24 6:57 a.m.6 views

Malicious code in evil-select-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 db8225867ca74c2a2192382dc4abcc5119fb1ac07049412245e3a686524138f8 Package description attempts to pentest/exploit the PyPI web interface. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but als...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/09/20 12:55 a.m.4 views

MAL-2024-8944 Malicious code in npm-evil-fish (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5422630a80e283b7ae938687b04a988bee70b5c8b137520d4aaca5af1b979c3 The OpenSSF Package Analysis project identified 'npm-evil-fish' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

7.4AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/09/20 12:55 a.m.3 views

Malicious code in npm-evil-fish (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b5422630a80e283b7ae938687b04a988bee70b5c8b137520d4aaca5af1b979c3 The OpenSSF Package Analysis project identified 'npm-evil-fish' @ 1.0.0 npm as malicious. It is considered malicious because: - The package...

7.2AI score
Exploits0
GithubExploit
GithubExploit
added 2024/09/03 9:59 a.m.347 views

Exploit for Cross-site Scripting in Wondercms

https://sploitus.com/exploit?id=3A833277-4844-5F02-AFEF-5EA6B...

6.1CVSS6AI score0.54305EPSS
Exploits16
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.257 views

Oracle DB SQL Injection Via SYS.LT.FINDRICSET Evil Cursor Method

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.LT.FINDRICSET Evil Cursor Method', 'Description' = %q This module will escalate an Oracle DB user to DBA by...

6.5CVSS7AI score0.31758EPSS
Exploits2
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/23 10:55 p.m.4 views

Malicious code in evil-pkg1 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f3f9795022d3525ac5206d67f60906020987aabf1bf4580b48d7ac7c6429108c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.5AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/23 10:55 p.m.5 views

Malicious code in evil-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 366920f1b216795839a0a8533db122155f0c839032a67fdd6a33544179749a2c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.5AI score
Exploits0References1
OSV
OSV
added 2024/08/23 10:55 p.m.4 views

MAL-2025-2959 Malicious code in evil-pkg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 366920f1b216795839a0a8533db122155f0c839032a67fdd6a33544179749a2c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.4AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/23 10:55 p.m.4 views

Malicious code in evil-pkg2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d1e1a7a65c4f1287f792371642eb66734028aa9dc7ffc50adde9b551e082bdb1 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.5AI score
Exploits0References1
OSV
OSV
added 2024/08/23 10:55 p.m.5 views

MAL-2025-2961 Malicious code in evil-pkg2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d1e1a7a65c4f1287f792371642eb66734028aa9dc7ffc50adde9b551e082bdb1 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.4AI score
Exploits0References1
OSV
OSV
added 2024/08/23 10:55 p.m.5 views

MAL-2025-2960 Malicious code in evil-pkg1 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f3f9795022d3525ac5206d67f60906020987aabf1bf4580b48d7ac7c6429108c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

7.4AI score
Exploits0References1
OSV
OSV
added 2024/08/12 1:38 p.m.5 views

CVE-2024-7408

This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...

6.5CVSS5.8AI score0.00255EPSS
Exploits0References1
NVD
NVD
added 2024/08/12 1:38 p.m.22 views

CVE-2024-7408

This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...

8.6CVSS0.00255EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/08/11 4:43 p.m.834 views

Exploit for Cross-site Scripting in Wondercms

PoC exploit for CVE-2023-41425, a Wonder CMS RCE XSS vulnerabi...

6.1CVSS6.5AI score0.54305EPSS
Exploits16
Cvelist
Cvelist
added 2024/08/09 10:40 a.m.22 views

CVE-2024-7408 Information Disclosure Vulnerability in Airveda Air Quality Monitor

This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...

8.6CVSS0.00255EPSS
Exploits0References1
CVE
CVE
added 2024/08/09 10:40 a.m.65 views

CVE-2024-7408

CVE-2024-7408 affects Airveda Air Quality Monitor PM2.5/PM10. The issue is information disclosure through plaintext transmission in the AP pairing mode, enabling an attacker in proximity to capture Wi‑Fi traffic. This can facilitate an Evil Twin attack on the targeted system. The CVSS metrics ind...

8.6CVSS6AI score0.00255EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/09 10:40 a.m.17 views

CVE-2024-7408 Information Disclosure Vulnerability in Airveda Air Quality Monitor

This vulnerability exists in Airveda Air Quality Monitor PM2.5 PM10 due to transmission of sensitive information in plain text during AP pairing mode. An attacker in close proximity could exploit this vulnerability by capturing Wi-Fi traffic of Airveda-AP. Successful exploitation of this...

8.6CVSS6.6AI score0.00255EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2024/08/09 5:0 a.m.328 views

Exploit for Heap-based Buffer Overflow in Microsoft

CVE-2024-38077-EXP 基于伪代码https://sites.google.com/site/zhin...

9.8CVSS9.6AI score0.75365EPSS
Exploits5
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/24 11:3 p.m.6 views

Malicious code in evil-package (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a6fe9e1f81afbcfb5f8f0d260af0434649c77b11d353d3264c7022e763767d43 --- Category: PENTEST - Packages with high confidence of being created for a pentest. Campaign: TEST-PACKAGES Reasons based on the campaign:...

6.9AI score
Exploits0References1
Rows per page
Query Builder