CVE-2023-50968

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when user operates an uri call without authorizations. The same uri can be operated to realize a SSRF attack also without authorizations. Users are recommended to upgrade to version 18.12.11, which fixes th...

EUVD-2002-1735

Malware in sbrugna...

EUVD-2025-12457

Malicious code in bioql PyPI...

CVE-2024-52888

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's properties...

CVE-2024-52888

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's properties...

CVE-2024-52888 Stored-XSS

For an authenticated end-user the portal may run a script while attempting to display a directory or some file's properties...

CVE-2024-52888

CVE-2024-52888 affects Check Point Mobile Access (R82 and earlier). An authenticated end-user may trigger a script during the portal’s display of a directory or file properties, consistent with a stored XSS issue in the File Share access path. The observable behavior is a script execution within ...

VulnCheck KEV: CVE-2023-50968

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when user operates an uri call without authorizations. The same uri can be operated to realize a SSRF attack also without authorizations. Users are recommended to upgrade to version 18.12.11, which...

CVE-2023-50968

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when user operates an uri call without authorizations. The same uri can be operated to realize a SSRF attack also without authorizations. Users are recommended to upgrade to version 18.12.11, which fixes th...

CVE-2023-50968

Apache OFBiz

CVE-2023-50968 Apache OFBiz: Arbitrary file properties reading and SSRF attack

Arbitrary file properties reading vulnerability in Apache Software Foundation Apache OFBiz when user operates an uri call without authorizations. The same uri can be operated to realize a SSRF attack also without authorizations. Users are recommended to upgrade to version 18.12.11, which fixes th...

Fedora: Security Advisory for libzapojit (FEDORA-2021-77ce69dba6)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Alfresco 5.2.4 - Persistent Cross-Site Scripting

Alfresco 5.2.4 - Persistent Cross-Site Scripting Exploit Title: Alfresco 5.2.4 - Persistent Cross-Site Scripting Date: 2020-03-02 Exploit Author: Romain LOISEL & Alexandre ZANNI https://pwn.by/noraj - Pentesters from Orange Cyberdefense France Vendor Homepage: https://www.alfresco.com/ Software...

Alfresco 5.2.4 - Persistent Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: Alfresco 5.2.4 - Persistent Cross-Site Scripting Exploit Author: Romain LOISEL & Alexandre ZANNI https://pwn.by/noraj - Pentesters from Orange Cyberdefense France Vendor Homepage: https://www.alfresco.com/ Software Link:...

Microsoft Office: Turn on privacy setting in Office Telemetry Agent

This test checks the setting for policy OpenVAS Vulnerability Test $Id: office2013privacysettingofficetelemetryagent.nasl 11843 2018-10-11 14:33:21Z emoss $ Check value for Turn on privacy setting in Office Telemetry Agent Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...

Malware Triage Tool: pftriage

pftriage is a tool to help analyze files during malware triage. It allows an analyst to quickly view and extract properties of a file to help during the triage process. The tool also has an analyze function which can detect common malicious indicators used by malware. Dependencies pefile filemagi...

Fedora 21 : clamav-0.98.7-1.fc21 (2015-7334)

ClamAV 0.98.7 ============= This release contains new scanning features and bug fixes. - Improvements to PDF processing: decryption, escape sequence handling, and file property collection. - Scanning/analysis of additional Microsoft Office 2003 XML format. - Fix infinite loop condition on crafted...

VLC 2.1.2 - (.asf file) Crash PoC

No description provided by source. !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and affects all...

VLC Media Player 2.1.2 Denial Of Service

!/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and affects all versions of vlc till latest 2.1.2 to r...

VideoLAN VLC Media Player 2.1.2 - .asf Crash (PoC)

VideoLAN VLC Media Player 2.1.2 - .asf Crash PoC !/usr/bin/python VLC Media Player up to 2.1.2 DOS POC Integer Division By zero in ASF Demuxer VLC Media Player is prone to DOS utilizing a division by zero error if minimium data packet size is equal to zero. this was tested on windows XP sp3 and...