Lucene search
K

231 matches found

Kitploit
Kitploit
added 2018/05/01 9:18 p.m.18 views

Gitmails - An Information Gathering Tool To Colect Git Commit Emails In Version Control Host Services

An information gathering tool to colect git commit emails in version control host services. Overview Gitmails explores that git commits contains a name and an email configured by the author and that version control host services are being used to store a lot of projects. What Gitmails does is:...

7.4AI score
Exploits0References2
Qualys Blog
Qualys Blog
added 2018/02/20 6:36 p.m.56 views

Qualys Cloud Platform 2.32 New Features

This release of the Qualys Cloud Platform version 2.32 includes updates and new features for AssetView, EC2 Connector, File Integrity Monitoring, Indication of Compromise, Security Assessment Questionnaire, Web Application Scanning, and Web Application Firewall, highlights as follows. Post update...

7AI score
Exploits0
OSV
OSV
added 2017/06/16 9:29 p.m.4 views

CVE-2017-8449

X-Pack Security 5.2.x would allow access to more fields than the user should have seen if the field level security rules used a mix of grant and exclude rules when merging multiple rules with field level security rules for the same index...

5.9CVSS5.8AI score0.00834EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2017/06/11 12:0 a.m.41 views

Sync Breeze 9.7.26 - 'Add Exclude Directory' Local Buffer Overflow

!/usr/bin/python Exploit Title: Sync Breeze v9.7.26 - Local Buffer Overflow Date: 11-06-2017 Exploit Author: @abatchy17 -- www.abatchy.com Vulnerable Software: Sync Breeze v9.7.26 Freeware, Pro and Ultimate Vendor Homepage: http://www.syncbreeze.com Version: 9.7.26 Software Link:...

7.4AI score
Exploits0
OSV
OSV
added 2016/05/22 8:59 p.m.2 views

UBUNTU-CVE-2016-2155

The grade-reporting feature in Singleview aka Single View in Moodle 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not consider the moodle/grade:manage capability, which allows remote authenticated users to modify "Exclude grade" settings by leveraging the Non-Editing...

4.3CVSS6.8AI score0.01614EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2016/05/22 8:59 p.m.24 views

CVE-2016-2155

The grade-reporting feature in Singleview aka Single View in Moodle 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not consider the moodle/grade:manage capability, which allows remote authenticated users to modify "Exclude grade" settings by leveraging the Non-Editing...

4.3CVSS6.8AI score0.01614EPSS
Exploits0References2
Cvelist
Cvelist
added 2016/05/22 8:0 p.m.32 views

CVE-2016-2155

The grade-reporting feature in Singleview aka Single View in Moodle 2.8.x before 2.8.11, 2.9.x before 2.9.5, and 3.0.x before 3.0.3 does not consider the moodle/grade:manage capability, which allows remote authenticated users to modify "Exclude grade" settings by leveraging the Non-Editing...

5.9AI score0.01614EPSS
Exploits0References4
OSV
OSV
added 2016/04/11 7:59 p.m.4 views

CVE-2016-0735

Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to bypass intended parent resource-level access restrictions by leveraging mishandling of a resource-level exclude policy...

8.8CVSS5.8AI score0.01669EPSS
Exploits0References1
Prion
Prion
added 2016/04/11 7:59 p.m.15 views

Design/Logic Flaw

Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to bypass intended parent resource-level access restrictions by leveraging mishandling of a resource-level exclude policy...

6.5CVSS6.7AI score0.01669EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2016/04/11 7:0 p.m.19 views

CVE-2016-0735

Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to bypass intended parent resource-level access restrictions by leveraging mishandling of a resource-level exclude policy...

8.4AI score0.01669EPSS
Exploits0References1
CNVD
CNVD
added 2016/03/22 12:0 a.m.5 views

Moodle Single View Design Vulnerability

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. A security vulnerability exists in Single View in versions 2.8.x prior to Moodle 2.8.1...

4.3CVSS6.8AI score0.01614EPSS
Exploits0References1
NVD
NVD
added 2015/07/16 2:59 p.m.19 views

CVE-2015-1831

The default exclude patterns excludeParams in Apache Struts 2.3.20 allow remote attackers to "compromise internal state of an application" via unspecified vectors...

7.5CVSS6.5AI score0.06312EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/07/16 2:0 p.m.24 views

CVE-2015-1831

The default exclude patterns excludeParams in Apache Struts 2.3.20 allow remote attackers to "compromise internal state of an application" via unspecified vectors...

6.4AI score0.06312EPSS
Exploits0References3
Metasploit
Metasploit
added 2015/07/02 8:29 p.m.91 views

HTTP Client Automatic Exploiter 2 (Browser Autopwn)

This module will automatically serve browser exploits. Here are the options you can configure: The INCLUDEPATTERN option allows you to specify the kind of exploits to be loaded. For example, if you wish to load just Adobe Flash exploits, then you can set Include to 'adobeflash'. The EXCLUDEPATTER...

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/05/15 12:0 a.m.29 views

Apache Struts 2.3.20 Incorrect Default Exclude Pattern (S2-024)

The remote web server is using Apache Struts version 2.3.20. It is, therefore, affected by an issue where the default exclude patterns are incorrect when using default settings. This allows a remote attacker to impact the internal application's state. Note that Nessus has not tested for this issu...

7.5CVSS5.5AI score0.06312EPSS
Exploits0References2
myhack58
myhack58
added 2015/05/13 12:0 a.m.45 views

Apache Struts Exclude mode Vulnerability(CVE-2 0 1 5-1 8 3 1)-vulnerability warning-the black bar safety net

Affected system: The Apache Group Struts 2.3.20 Not affected system: The Apache Group Struts 2.3.20.1 Description: CVECAN ID: CVE-2 0 1 5-1 8 3 1 Struts is for building Web applications of open source. Struts 2.3.20 using the wrong default the exclude mode, If enabled the default setting, the err...

7.5CVSS0.3AI score0.06312EPSS
Exploits0
CNVD
CNVD
added 2015/05/11 12:0 a.m.7 views

Apache Struts Incorrect Default Exclude Pattern Vulnerability

Apache Struts is an open source architecture for building Java web applications. The Apache Struts program fails to properly default exclude patterns when using the default settings, allowing remote attackers to exploit the vulnerability against the internal application state...

7.5CVSS7AI score0.06312EPSS
Exploits0References1
Kitploit
Kitploit
added 2015/03/05 1:10 a.m.63 views

Vane - WordPress Vulnerability Scanner (A GPL fork of WPScan)

Vane is a GPL fork of the now non-free popular WordPress vulnerability scanner WPScan. INSTALL Prerequisites Windows not supported Ruby = 1.9 RubyGems Git Installing on Debian/Ubuntu sudo apt-get install libcurl4-gnutls-dev libopenssl-ruby libxml2 libxml2-dev libxslt1-dev ruby-dev git clone...

7.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/08/29 12:0 a.m.23 views

Fedora 19 : perl-Plack-1.0031-1.fc19 (2014-9544)

---------------------------------------------------------------------- ---------- ChangeLog : - Fri Aug 8 2014 Ralf Corsepius - 1.0031-1 - Upstream update. - Thu Jan 16 2014 Ralf Corsepius - 1.0030-3 - Move misplaced %exclude-line from base-package to -Test. - Wed Jan 15 2014 Ralf Corsepius -...

5CVSS5.3AI score0.02455EPSS
Exploits0References3
Kitploit
Kitploit
added 2014/08/20 12:52 a.m.32 views

SearchMyFiles v2.50 - Alternative to 'Search For Files And Folders' module of Windows + Duplicates Search

SearchMyFiles is an alternative to the standard "Search For Files And Folders" module of Windows. It allows you to easily search files in your system by wildcard, by last modified/created/last accessed time, by file attributes, by file content text or binary search, and by the file size...

7.2AI score
Exploits0
Rows per page
Query Builder