Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

Node.js
Node.jsadded 2016/12/01 6:35 p.m.32 views

Downloads Resources over HTTP

Overview Affected versions of baryton-saxophone insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code...

9.3CVSS5.6AI score0.00735EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 5:29 p.m.33 views

Downloads Resources over HTTP

Overview Affected versions of redis-srvr insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution o...

9.3CVSS5.3AI score0.00735EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:25 p.m.34 views

Downloads Resources over HTTP

Overview Affected versions of httpsync insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on...

9.3CVSS5.5AI score0.00735EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 3:2 p.m.44 views

Downloads Resources over HTTP

Overview Affected versions of air-sdk insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on t...

9.3CVSS5.3AI score0.00735EPSS
Exploits0Affected Software1
Node.js
Node.jsadded 2016/12/01 12:44 a.m.52 views

Downloads Resources over HTTP

Overview Affected versions of cobalt-cli insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution o...

4.3CVSS6.2AI score0.00119EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessusadded 2016/02/19 12:0 a.m.27 views

Mozilla Firefox < 44.0 Multiple Vulnerabilities

Binary data 9075.prm...

10CVSS7.8AI score0.03529EPSS
Exploits0References26
Opera Security Advisories
Opera Security Advisoriesadded 2012/08/01 12:0 a.m.3 views

Small windows can be used in several ways to trick users into executing downloads – Opera Security Advisories

When the download dialog is displayed, it should always be visible to the user, to ensure that the user realizes it is there. If the dialog is displayed in a small enough window, the user may not realize it is being displayed, and if the right keyboard sequence is carefully followed, they can end...

5.8AI score
Exploits0References1
Nmap
Nmapadded 2010/12/12 10:40 p.m.120 views

stuxnet-detect NSE Script

Detects whether a host is infected with the Stuxnet worm . An executable version of the Stuxnet infection will be downloaded if a format for the filename is given on the command line. See also: smb-vuln-ms10-061.nse Script Arguments stuxnet-detect.save Path to save Stuxnet executable under, with ...

10CVSS0.94176EPSS
Exploits33
Rows per page
Query Builder