615 matches found
PT-2025-7214 · Wegia · Wegia
Name of the Vulnerable Software and Affected Versions: WeGIA versions prior to 3.2.14 Description: A Path Traversal vulnerability was discovered in the WeGIA application, affecting the examples.php endpoint. This issue could allow an attacker to gain unauthorized access to sensitive information...
Vulnerability-learning
It is an offensive tool for web application security. The reposi...
Security update for tomcat
This update for tomcat fixes the following issues: CVE-2024-50379: Fixed remote code execution RCE due to TOCTOU issue in JSP compilation bsc1234663. CVE-2024-54677: Fixed denial-of-service DoS attack in examples web application bsc1234664. Patch Instructions: To install this SUSE update use the...
Small business owners, secure your web shop
An online shop is more than just another way to sell your products. It comes with a responsibility to keep the web shop secure. Cybercriminals are looking to steal your customers’ credit card details, their personal data, and even your revenue. And it’s not as if using a platform that is used by...
com.baidu.hugegraph:hugegraph-cassandra (>=0.7.4 <=0.11.2), com.baidu.hugegraph:hugegraph-dist (>=0.7.4 <=0.11.2) +97 more potentially affected by CVE-2025-23015 via org.apache.cassandra:cassandra-all (>=3.10 <=3.11.17)
org.apache.cassandra:cassandra-all MAVEN version =3.10, =0.7.4, =0.7.4, =0.7.4, =0.7.4, =0.7.4, =3.8.0-bv13, =3.8.0-bv13, =3.8.0-bv13, =3.8.0-bv13, =3.8.0-bv13, =3.8.0-bv13, =3.8.0-bv13, =3.8.0-bv13, =6.5.13, =6.5.13, =6.5.248 and more Source cves: CVE-2025-23015 Source advisory:...
MAL-2025-1050 Malicious code in shader-examples (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be893a664956943dd2d7acfe083a05148592f7ce7adb2991f68fd577391651ab Any computer that has this package installed or running should be considered...
Malicious code in shader-examples (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be893a664956943dd2d7acfe083a05148592f7ce7adb2991f68fd577391651ab Any computer that has this package installed or running should be considered...
MAL-2025-809 Malicious code in blockly-examples (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in blockly-examples (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in ton-examples (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac83c8d18317fa7c1f2fecc782c419c88d798a4e02d25874898824c47e74f1ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1180 Malicious code in ton-examples (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ac83c8d18317fa7c1f2fecc782c419c88d798a4e02d25874898824c47e74f1ac Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-327 Malicious code in 1password-sdk-exapmles (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 98366c77213b87d7622472828c95aa7590386458d140ad0a0b31a86afde5b6ee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-254 Malicious code in uber-direct-js-sdk-examples (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 30ee8294ed2bcf683f478b647f9919d6b45e0651905c29ada14a3ce392168447 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Tracking cloud-fluent threat actors - Part two: Behavioral cloud IOCs
Discover how behavioral cloud IOCs can expose malicious activity as we break down real-world examples to reveal actionable detection techniques...
Exploit for CVE-2024-27292
Docassemblepoc Docassemble任意文件读取漏洞CVE-2024-27292 python D...
OESA-2024-2564 tomcat security update
The Apache Tomcat software is developed in an open and participatory environment and released under the Apache License version 2. The Apache Tomcat project is intended to be a collaboration of the best-of-breed developers from around the world. We invite you to participate in this open developmen...
MAL-2024-11912 Malicious code in focal-examples (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a810e0097be46a2d0ef76ac3c6aa2088c3467e69485c408f22014bc66dd07530 The OpenSSF Package Analysis project identified 'focal-examples' @ 9.9.9 npm as malicious. It is considered malicious because: - The package...
Malicious code in focal-examples (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis a810e0097be46a2d0ef76ac3c6aa2088c3467e69485c408f22014bc66dd07530 The OpenSSF Package Analysis project identified 'focal-examples' @ 9.9.9 npm as malicious. It is considered malicious because: - The package...
DEBIAN-CVE-2024-54677
Uncontrolled Resource Consumption vulnerability in the examples web application provided with Apache Tomcat leads to denial of service. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.1, from 10.1.0-M1 through 10.1.33, from 9.0.0.M1 through 9.9.97. The following versions were EOL at...
Exploit for Path Traversal in Grafana
Automated Exploit Tool for Grafana CVE-2021-43798 !Previewi...