26 matches found
EUVD-2017-8914
Malware in sbrugna...
EUVD-1999-1307
Malware in sbrugna...
EUVD-1999-0689
Malware in sbrugna...
EUVD-2000-0548
Malware in sbrugna...
EUVD-2005-0574
Malware in sbrugna...
EUVD-2016-2588
Malware in sbrugna...
CVE-2025-54792
LocalSend is an open-source app to securely share files and messages with nearby devices over local networks without needing an internet connection. In versions 1.16.1 and below, a critical Man-in-the-Middle MitM vulnerability in the software's discovery protocol allows an unauthenticated attacke...
CVE-2025-54792
LocalSend is an open-source app to securely share files and messages with nearby devices over local networks without needing an internet connection. In versions 1.16.1 and below, a critical Man-in-the-Middle MitM vulnerability in the software's discovery protocol allows an unauthenticated attacke...
Hackers Exploit Critical CrushFTP Flaw to Gain Admin Access on Unpatched Servers
A newly disclosed critical security flaw in CrushFTP has come under active exploitation in the wild. Assigned the CVE identifier CVE-2025-54309 , the vulnerability carries a CVSS score of 9.0. "CrushFTP 10 before 10.8.5 and 11 before 11.3.423, when the DMZ proxy feature is not used, mishandles AS...
CVE-2025-27387
OPPO Clone Phone uses a weak password WiFi hotspot to transfer files, resulting in Information disclosure...
CVE-2025-27387
OPPO Clone Phone (CVE-2025-27387) is affected by an information disclosure due to a weak WPA/Wi‑Fi hotspot used to transfer files. The CVE details specify adjacent attack vector with low complexity and no privileges required, yielding confidentiality impact (high) while other impacts are not indi...
CVE-2025-27387 OPPO Clone Phone uses weak WPA passphrase as only means of security
OPPO Clone Phone uses a weak password WiFi hotspot to transfer files, resulting in Information disclosure...
CVE-2017-17763
SuperBeam through 4.1.3, when using the LAN or WiFi Direct Share feature, does not use HTTPS or any integrity-protection mechanism for file transfer, which makes it easier for remote attackers to send crafted files, as demonstrated by APK injection...
CVE-2025-24366 Insufficient sanitization of user provided rsync command in SFTPGo
SFTPGo is an open source, event-driven file transfer solution. SFTPGo supports execution of a defined set of commands via SSH. Besides a set of default commands some optional commands can be activated, one of them being rsync. It is disabled in the default configuration and it is limited to the...
CVE-2024-38272
creationtimestamp| type| source ---|---|--- 2024-08-12 12:44:11+00:00| seen| Telegram/NMamkVEHpjPy75q8OkNF-7ES7f0rvEvrOVZWOzTLall1cnfu 2024-08-14 12:47:24+00:00| published-proof-of-concept| https://t.me/truesecator/6087 2024-08-18 13:28:57+00:00| seen|...
Raonwiz DEXT5 has an unspecified vulnerability
Raonwiz DEXT5 is a set of HTML5-based file transfer solution from Raonwiz Korea. The product supports encrypted file transfer, form building and other features. A security vulnerability exists in versions prior to Raonwiz DEXT5 Editor 3.5.1405747.1100.03, which can be exploited by attackers to...
Maxum Rumpus Cross-Site Request Forgery Vulnerability
Maxum Rumpus is an FTP and Web file transfer server. A cross-site request forgery vulnerability exists in Maxum Rumpus 8.2.13, 8.2.14, which can be exploited by an attacker to perform an operation as an authenticated user by tricking a user into visiting a malicious page...
Accellion FTA SQL Injection Vulnerability
Accellion File Transfer Appliance FTA is a secure file transfer service that allows users to share and synchronize files online, all encrypted with AES 128/256. A SQL injection vulnerability exists in Accellion FTA 912370 and earlier versions. The vulnerability can be exploited to conduct a SQL...
Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities
Bluetooth Photo-File Share 2.1 iOS - Multiple Vulnerabilities Document Title: =============== Bluetooth Photo-File Share v2.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1270 Release Date: ============= 2014-05-30...
rssh and scponly arbitrary command execution
Vulnerable applications: rssh All versions All operating systems scponly All versions All operating systems Not vulnerable: Discussion: rssh and scponly are restricted shells that are designed to allow execution only of certain preset programs. Both are used to grant a user the ability to transfe...