Lucene search
K

16 matches found

Packet Storm News
Packet Storm News
added 2026/05/22 12:0 a.m.12 views

Adversarial Vulnerability under Temporal Concept Drift: A Longitudinal Study of Android Malware Detection

We present a longitudinal, drift-aware evaluation of adversarial robustness across more than a decade of Android applications using static and dynamic feature representations extracted from emulator and real-device executions. The dataset is organized into yearly slices and evaluated under three...

5.8AI score
Exploits0
The Hacker News
The Hacker News
added 2026/02/18 11:58 a.m.12 views

Cybersecurity Tech Predictions for 2026: Operating in a World of Permanent Instability

In 2025, navigating the digital seas still felt like a matter of direction. Organizations charted routes, watched the horizon, and adjusted course to reach safe harbors of resilience, trust, and compliance. In 2026, the seas are no longer calm between storms. Cybersecurity now unfolds in a state ...

6.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:30 p.m.4 views

CVE-2022-1395

The Easy FAQ with Expanding Text WordPress plugin through 3.2.8.3.1 does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfilteredhtml is disallowed...

4.8CVSS6.1AI score0.00565EPSS
Exploits2References1
Wired Threat Level
Wired Threat Level
added 2025/04/14 10:0 a.m.7 views

Smishing Triad: The Scam Group Stealing the World’s Riches

Millions of scam text messages are sent every month. The Chinese cybercriminals behind many of them are expanding their operations—and quickly innovating...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2024/09/19 2:10 p.m.10 views

New Brazilian-Linked SambaSpy Malware Targets Italian Users via Phishing Emails

A previously undocumented malware called SambaSpy is exclusively targeting users in Italy via a phishing campaign orchestrated by a suspected Brazilian Portuguese-speaking threat actor. "Threat actors usually try to cast a wide net to maximize their profits, but these attackers are focused on jus...

6.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/05/30 9:15 a.m.4 views

CVE-2022-1395

The Easy FAQ with Expanding Text WordPress plugin through 3.2.8.3.1 does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfilteredhtml is disallowed...

4.8CVSS5.5AI score0.00565EPSS
Exploits2References2
OSV
OSV
added 2022/05/30 9:15 a.m.3 views

CVE-2022-1395

The Easy FAQ with Expanding Text WordPress plugin through 3.2.8.3.1 does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfilteredhtml is disallowed...

4.8CVSS5.8AI score0.00565EPSS
Exploits2References1
CVE
CVE
added 2022/05/30 8:35 a.m.98 views

CVE-2022-1395

CVE-2022-1395 affects WordPress Easy FAQ with Expanding Text plugin (versions

4.8CVSS4.8AI score0.00565EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/05/30 8:35 a.m.23 views

CVE-2022-1395 Easy FAQ with Expanding Text <= 3.2.8.3.1 - Admin+ Stored Cross-Site Scripting

The Easy FAQ with Expanding Text WordPress plugin through 3.2.8.3.1 does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfilteredhtml is disallowed...

5.1AI score0.00565EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/05/30 12:0 a.m.2 views

WordPress plugin Easy FAQ with Expanding Text 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Easy FAQ with Expanding Text plugin 3.2.8.3.1 and earlier versions contain a cross-site scripting...

4.8CVSS5.6AI score0.00565EPSS
Exploits2References2
wpexploit
wpexploit
added 2022/05/10 12:0 a.m.134 views

Easy FAQ with Expanding Text <= 3.2.8.3.1 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfilteredhtml is disallowed Put the following payload in any of the plugin's settings such as Font size, Font Color and save: "...

4.8CVSS0.8AI score0.00565EPSS
Exploits2
WPVulnDB
WPVulnDB
added 2022/05/10 12:0 a.m.23 views

Easy FAQ with Expanding Text <= 3.2.8.3.1 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks when unfilteredhtml is disallowed PoC Put the following payload in any of the plugin's settings such as Font size, Font Color and save: "...

4.8CVSS2.1AI score0.00565EPSS
Exploits2Affected Software1
CVE
CVE
added 2022/04/27 2:35 p.m.95 views

CVE-2022-24889

CVE-2022-24889 affects Nextcloud Server (file server component). The vulnerability lets an attacker trick administrators into enabling the server’s unnecessary “recommended” apps, thereby unnecessarily expanding the attack surface. Public details indicate this is remedied by upgrading to versions...

4.3CVSS4.2AI score0.00628EPSS
Exploits1References4Affected Software1
myhack58
myhack58
added 2018/07/25 12:0 a.m.343 views

Note DedeCMS a hash length of the expanding attacks caused by unauthorized vulnerability-vulnerability warning-the black bar safety net

Vulnerability impact: Dedecmsweaving dreams CMS V5. 7. 72 the official version of the 20180109 latest version The vulnerability principle DedeCMS user authentication by the authentication Cookie in the DedeUserID and DedeUserIDckMd5 carried out, as follows: ! Where$cfgcookieencode is installed wh...

7.5AI score
Exploits0
exploitpack
exploitpack
added 2010/11/26 12:0 a.m.24 views

Linux Kernel 2.6.37 - setup_arg_pages() Denial of Service

Linux Kernel 2.6.37 - setupargpages Denial of Service // source: https://www.securityfocus.com/bid/44301/info / known for over a year, fixed in grsec bug is due to a bad limit on the max size of the stack for 32bit apps on a 64bit OS. Instead of them being limited to 1/4th of a 32bit address spac...

Exploits0
Oracle linux
Oracle linux
added 2010/03/15 12:0 a.m.49 views

cpio security update

2.6-23.1 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive - CVE-2007-4476 fix stack crashing in safernamesuffix...

7.5CVSS3AI score0.14902EPSS
Exploits3
Rows per page
Query Builder