13 matches found
EUVD-2017-17147
Malware in sbrugna...
EUVD-2023-32622
Malicious code in bioql PyPI...
EUVD-2024-17978
Malicious code in bioql PyPI...
CVE-2025-7077 Shenzhen Libituo Technology LBT-T300-T310 appy.cgi config_3g_para buffer overflow
A vulnerability classified as critical has been found in Shenzhen Libituo Technology LBT-T300-T310 up to 2.2.3.6. This affects the function config3gpara of the file /appy.cgi. The manipulation of the argument username3g/password3g leads to buffer overflow. It is possible to initiate the attack...
CVE-2025-52802 WordPress Import YouTube videos as WP Posts plugin <= 2.1 - Broken Access Control Vulnerability
Missing Authorization vulnerability in enguerranws Import YouTube videos as WP Posts import-youtube-videos-as-wp-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Import YouTube videos as WP Posts: from n/a through = 2.1...
CVE-2025-4750 D-Link DI-7003GV2 Configuration get_version.data information disclosure
A vulnerability, which was classified as problematic, has been found in D-Link DI-7003GV2 24.04.18D1 R68125. This issue affects some unknown processing of the file /H5/getversion.data of the component Configuration Handler. The manipulation leads to information disclosure. The attack may be...
(Pwn2Own) Synology BeeStation BST150-4T Cleartext Transmission of Sensitive Information Vulnerability
This vulnerability allows network-adjacent attackers to spoof specific configuration values on affected installations of Synology BeeStation BST150-4T devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the downloading of configuration informatio...
CVE-2025-30797
Missing Authorization vulnerability in bigdrop.gr Greek Multi Tool – Fix peralinks, accents, auto create menus and more greek-multi-tool allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Greek Multi Tool – Fix peralinks, accents, auto create menus and more...
HTTP Client Automatic Exploiter 2 (Browser Autopwn)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "HTTP Client Automatic Exploiter 2 Browser Autopwn", 'Description' = %q This module will automatically serve browser exploits. Here are the option...
CVE-2023-5916 Lissy93 Dashy Configuration save access control
A vulnerability classified as critical has been found in Lissy93 Dashy 2.1.1. This affects an unknown part of the file /config-manager/save of the component Configuration Handler. The manipulation of the argument config leads to improper access controls. It is possible to initiate the attack...
Exploit for Missing Authentication for Critical Function in Oracle Weblogic_Server
Java Deserialization Vulnerability Detection This is a Java d...
JChit counter 1.0.0 (imgsrv.php ac) Remote File Disclosure Vulnerability
No description provided by source. Y! Underground Group http://2600.ir -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-=- Portal.......: jchit counter v1.0.0 Download.....: http://developers.jccorp.net Type.........: Remot...
UBBCentral UBB.Threads < 6.5.2 Beta - 'mailthread.php' SQL Injection
Alphaprogrammer , Oilkarchack , TheCephaleX , Str0ke And Iranian Hacking & Security Teams : IHS TeaM , alphaST , Shabgard Security Team , Emperor Hacking Team , Crouz Security Team & Simorgh-ev Security Team Config : please replace your address : $url = "http:///www.example.com"; please replace...