Lucene search
K

20 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/21 10:53 p.m.8 views

Malicious code in aiolrucache (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8b847ab6789b3a3848d887f76adae74d05523dd4cb1a974372518679d27ed70e The package masquerades as a utility, but during import, code loads obfuscated modules with RAT- and spyware-like functionality, including: exfiltrating files,...

5.9AI score
Exploits0References1
OSV
OSV
added 2025/06/06 2:4 p.m.4 views

OESA-2025-1606 yelp security update

Yelp is the help viewer in GNOME. It natively views Mallard, DocBook, man, info, and HTML documents. It can locate documents according to the freedesktop.org help system specification. Security Fixes: A flaw was found in Yelp. The Gnome user help application allows the help document to execute...

7.4CVSS7.2AI score0.12592EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2025/04/03 2:15 p.m.2 views

CVE-2025-3155

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment...

7.4CVSS7AI score0.12592EPSS
Exploits1References13
The Hacker News
The Hacker News
added 2024/08/06 9:36 a.m.23 views

New Android Spyware LianSpy Evades Detection Using Yandex Cloud

Users in Russia have been the target of a previously undocumented Android post-compromise spyware called LianSpy since at least 2021. Cybersecurity vendor Kaspersky, which discovered the malware in March 2024, noted its use of Yandex Cloud, a Russian cloud service, for command-and-control C2...

7.3AI score
Exploits0
NVD
NVD
added 2023/07/30 8:15 a.m.10 views

CVE-2023-32226

Sysaid - CWE-552: Files or Directories Accessible to External Parties - Authenticated users may exfiltrate files from the server via an unspecified method...

8.3CVSS8.3AI score0.0053EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/18 12:0 a.m.6 views

PT-2023-13475 · Western Digital +1 · Western Digital My Cloud Os 5 +2

Name of the Vulnerable Software and Affected Versions: Western Digital My Cloud Home versions prior to 9.4.0-191 Western Digital My Cloud Home Duo versions prior to 9.4.0-191 SanDisk ibi versions prior to 9.4.0-191 Western Digital My Cloud OS 5 versions prior to 5.26.202 Description: A Path...

5.8CVSS5.6AI score0.00767EPSS
Exploits0References8
OSV
OSV
added 2022/07/08 8:15 p.m.4 views

CVE-2022-35412

Digital Guardian Agent 7.7.4.0042 allows an administrator who ordinarily does not have a supported way to uninstall the product to disable some of the agent functionality and then exfiltrate files to an external USB device...

5.1CVSS5.8AI score0.00229EPSS
Exploits0References2
NVD
NVD
added 2022/07/08 8:15 p.m.21 views

CVE-2022-35412

Digital Guardian Agent 7.7.4.0042 allows an administrator who ordinarily does not have a supported way to uninstall the product to disable some of the agent functionality and then exfiltrate files to an external USB device...

5.1CVSS0.00229EPSS
Exploits0References2
Prion
Prion
added 2022/07/08 8:15 p.m.10 views

Design/Logic Flaw

Digital Guardian Agent 7.7.4.0042 allows an administrator who ordinarily does not have a supported way to uninstall the product to disable some of the agent functionality and then exfiltrate files to an external USB device...

3.6CVSS5.2AI score0.00229EPSS
Exploits0References2Affected Software1
Kitploit
Kitploit
added 2022/03/20 8:30 p.m.51 views

PSRansom - PowerShell Ransomware Simulator With C2 Server

PSRansom is a PowerShell Ransomware Simulator with C2 Server capabilities. This tool helps you simulate encryption process of a generic ransomware in any system on any system with PowerShell installed on it. Thanks to the integrated C2 server, you can exfiltrate files and receive client informati...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2021/10/29 11:30 a.m.25 views

Http-Protocol-Exfil - Exfiltrate Files Using The HTTP Protocol Version ("HTTP/1.0" Is A 0 And "HTTP/1.1" Is A 1)

Use the HTTP protocol version to send a file bit by bit "HTTP/1.0" is a 0 and "HTTP/1.1" is a 1. It uses GET requests so the Blue Team would only see the requests to your IP address. However, it takes a long time to send bigger files, for example it needs 1 hour to send 200 KB, and the amount of...

7.1AI score
Exploits0References1
OSV
OSV
added 2021/10/12 5:23 p.m.28 views

GHSA-G6V7-VQHX-6V6C XML External Entity Reference in org.opencms:opencms-core

An XML external entity XXE vulnerability in Alkacon OpenCms 11.0, 11.0.1 and 11.0.2 allows remote authenticated users with edit privileges to exfiltrate files from the server's file system by uploading a crafted SVG document...

6.5CVSS6.2AI score0.01249EPSS
Exploits1References6
Prion
Prion
added 2021/10/08 3:15 p.m.16 views

Xxe

An XML external entity XXE vulnerability in Alkacon OpenCms 11.0, 11.0.1 and 11.0.2 allows remote authenticated users with edit privileges to exfiltrate files from the server's file system by uploading a crafted SVG document...

4CVSS6.2AI score0.01249EPSS
Exploits1References2Affected Software1
Securelist
Securelist
added 2021/07/14 10:0 a.m.60 views

LuminousMoth APT: Sweeping attacks for the chosen few

APT actors are known for the frequently targeted nature of their attacks. Typically, they will handpick a set of targets that in turn are handled with almost surgical precision, with infection vectors, malicious implants and payloads being tailored to the victims identities or environment. Its no...

0.5AI score
Exploits0
NVD
NVD
added 2018/03/17 2:29 p.m.18 views

CVE-2018-8741

A directory traversal flaw in SquirrelMail 1.4.22 allows an authenticated attacker to exfiltrate or potentially delete files from the hosting server, related to ../ in the attlocalname field in Deliver.class.php...

8.8CVSS8.5AI score0.04451EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2018/03/17 2:29 p.m.5 views

CVE-2018-8741

A directory traversal flaw in SquirrelMail 1.4.22 allows an authenticated attacker to exfiltrate or potentially delete files from the hosting server, related to ../ in the attlocalname field in Deliver.class.php...

8.8CVSS5.5AI score0.04451EPSS
Exploits0References14
OSV
OSV
added 2018/03/17 2:29 p.m.3 views

UBUNTU-CVE-2018-8741

A directory traversal flaw in SquirrelMail 1.4.22 allows an authenticated attacker to exfiltrate or potentially delete files from the hosting server, related to ../ in the attlocalname field in Deliver.class.php...

8.8CVSS7.3AI score0.04451EPSS
Exploits0References6
Prion
Prion
added 2017/09/26 1:29 a.m.12 views

Path traversal

A path traversal information disclosure vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can execute arbitrary code and exfiltrate files...

7.5CVSS9.4AI score0.04606EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/09/25 7:0 p.m.19 views

CVE-2017-7974

A path traversal information disclosure vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can execute arbitrary code and exfiltrate files...

9.5AI score0.04606EPSS
Exploits0References2
Metasploit
Metasploit
added 2011/01/19 6:4 p.m.46 views

Android Content Provider File Disclosure

This module exploits a cross-domain issue within the Android web browser to exfiltrate files from a vulnerable device. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Content Provider...

4.3CVSS0.3AI score0.26952EPSS
Exploits8
Rows per page
Query Builder