Lucene search
K

14 matches found

Veracode
Veracode
added 2025/12/03 12:49 a.m.5 views

Credential Disclosure

Grype is vulnerable to credential disclosure. The vulnerability is due to improper sanitization of registry credentials in output files generated using the --file or --output json= options, which allows an attacker to obtain exposed registry credentials from the generated output files...

8.2CVSS5.8AI score0.00021EPSS
Exploits0References4Affected Software2
GithubExploit
GithubExploit
added 2023/03/26 12:18 a.m.259 views

Exploit for OS Command Injection in Netgate Pfblockerng

pfBlockerNG T...

9.8CVSS9.7AI score0.94321EPSS
Exploits14
GithubExploit
GithubExploit
added 2021/03/18 10:36 p.m.152 views

Exploit for Incorrect Authorization in Atlassian Jira

CVE-2019-3403 I wanted to easily be able to exploit CVE-2019-3...

5.3CVSS6.2AI score0.88339EPSS
Exploits1
Kitploit
Kitploit
added 2020/12/25 11:30 a.m.37540 views

Vulmap - Web Vulnerability Scanning And Verification Tools

Vulmap is a vulnerability scanning tool that can scan for vulnerabilities in Web containers, Web servers, Web middleware, and CMS and other Web programs, and has vulnerability exploitation functions. Relevant testers can use vulmap to detect whether the target has a specific vulnerability, and ca...

9.8CVSS9.8AI score0.94489EPSS
Exploits649References2
Kitploit
Kitploit
added 2020/05/31 9:30 p.m.68 views

Bing-Ip2Hosts - Bingip2Hosts Is A Bing.com Web Scraper That Discovers Websites By IP Address

Bing-ip2hosts is a Bing.com web scraper to discover hostnames by IP address. Description Bing-ip2hosts is a Bing.com web scraper that discovers hostnames by IP address. Bing is the flagship Microsoft search engine formerly known as MSN Search and Live Search. It provides a feature unique to searc...

6.7AI score
Exploits0References6
Fedora
Fedora
added 2018/04/04 4:48 p.m.31 views

[SECURITY] Fedora 26 Update: gd-2.2.5-2.fc26

The gd graphics library allows your code to quickly draw images complete with lines, arcs, text, multiple colors, cut and paste from other images, and flood fills, and to write out the result as a PNG or JPEG file. This is particularly useful in Web applications, where PNG and JPEG are two of the...

5.5CVSS2.8AI score0.10274EPSS
Exploits1
Kitploit
Kitploit
added 2016/07/05 11:44 p.m.23 views

Fierce - A DNS Reconnaissance Tool for Locating Non-Contiguous IP Space

First, credit where credit is due, fierce was originally written by RSnake along with others at http://ha.ckers.org/ . This is simply a conversion to Python 3 to simplify and modernize the codebase. The original description was very apt, so I'll include it here: Fierce is a semi-lightweight scann...

7.2AI score
Exploits0References1
Fedora
Fedora
added 2016/06/17 3:51 p.m.43 views

[SECURITY] Fedora 22 Update: gd-2.1.1-4.fc22

The gd graphics library allows your code to quickly draw images complete with lines, arcs, text, multiple colors, cut and paste from other images, and flood fills, and to write out the result as a PNG or JPEG file. This is particularly useful in Web applications, where PNG and JPEG are two of the...

9.1CVSS2.8AI score0.02396EPSS
Exploits1
exploitpack
exploitpack
added 2015/11/05 12:0 a.m.19 views

OpenSSL - Alternative Chains Certificate Forgery

OpenSSL - Alternative Chains Certificate Forgery !/usr/bin/env ruby encoding: ASCII-8BIT By Ramon de C Valle. This work is dedicated to the public domain. require 'openssl' require 'optparse' require 'socket' Version = 0, 0, 1 Release = nil class String def hexdumpstream=$stdout 0.stepbytesize - ...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2015/07/27 12:0 a.m.32 views

Elastic Logstash directory traversal

Directory traversal in file output plugin...

6.4CVSS2.7AI score0.00673EPSS
Exploits1References2Affected Software1
Elastic
Elastic
added 2015/06/09 9:42 p.m.5 views

Logstash File Output Vulnerability CVE-2015-4152

Summary: Logstash versions 1.4.2 and prior are vulnerable to a directory traversal attack that allows an attacker to over-write files on the server running Logstash. This vulnerability is not present in the initial installation of Logstash. The vulnerability is exposed when the file output plugin...

6.4CVSS6.9AI score0.00629EPSS
Exploits1
FreeBSD
FreeBSD
added 2015/06/09 12:0 a.m.31 views

logstash -- Directory traversal vulnerability in the file output plugin

Elastic reports: An attacker could use the File output plugin with dynamic field references in the path option to traverse paths outside of Logstash directory. This technique could also be used to overwrite any files which can be accessed with permissions associated with Logstash user. This relea...

6.4CVSS6.3AI score0.00629EPSS
Exploits1References2
rdot
rdot
added 2010/11/05 12:0 a.m.15 views

rsaBasePlums[my.mail.ru] 0.1

Снимок: Проект: rsaBasePlumsmy.mail.ru Автор: rsaReliableS Версия: 0.1 Язык: .Net C 2.0 Краткое описание: rsaBasePlumsmy.mail.ru 0.1 – программа, позволяющая автоматизировать процесс сбора баз e-mail адресов для массовых рассылок, etc. Особенности: маленький размер: меньше 50 кб поддержка...

7.3AI score
Exploits0
rdot
rdot
added 2010/07/02 12:0 a.m.14 views

Cкрипт для работы со слепыми инъекциями

Скрипт для работы со слепыми инъекциями. Наверное аналогов очень много, но этот скрипт заточен под слепые инъекции, а так же я постарался включить в него все возможные функции к примеру работа с informationschema очень полезно если версия БД = 5 или вывод файла что будет применимо если версия БД ...

0.7AI score
Exploits0
Rows per page
Query Builder