29751 matches found
CVE-2020-11514
creationtimestamp| type| source ---|---|--- 2025-09-15 21:53:34+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2020/CVE-2020-11514.yaml 2025-09-16 21:02:25+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lyy7rtj3it27...
CVE-2025-59377
creationtimestamp| type| source ---|---|--- 2025-09-15 13:18:08+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/51708...
Malicious code in ng2-file-upload (npm)
The package ng2-file-upload was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in...
MAL-2025-47196 Malicious code in ng2-file-upload (npm)
The package ng2-file-upload was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in...
Malicious code in ngx-bootstrap (npm)
The package ngx-bootstrap was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in t...
MAL-2025-47197 Malicious code in ngx-bootstrap (npm)
The package ngx-bootstrap was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in t...
offensiveinterview
It is an offensive tool for penetration testing and red teaming. The repository contains a collection of interview questions to screen offensive red team/pentest candidates, categorized into open-ended, knowledge-based, and scenario-based questions. The questions cover various topics such as...
GHSA-QHXP-V273-G94H
creationtimestamp| type| source ---|---|--- 2025-09-14 04:33:01+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3lyrhkwlxt72c...
pwntools
This is a CTF Capture The Flag framework and exploit development library. It is written in Python and provides a set of tools for developing and executing exploits. The library is designed to be extensible and customizable, allowing users to easily add new functionality and plugins. The library i...
hackingtool
This is an all-in-one hacking tool for hackers, written in Python. The tool is designed to be run on Linux, Kali Linux, or Parrot OS. It provides a menu-driven interface for various hacking tasks, including information gathering, wireless attacks, SQL injection, phishing, web attacks,...
OESA-2025-2262 aide security update
Security Fixes: A vulnerability was found in AIDE up to 0.19.1 and classified as problematic.Using CWE to declare the problem leads to CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.Impacted is integrity.Upgrading to version 0.19.2 eliminates th...
GHSA-JHRQ-QVRM-QR36
creationtimestamp| type| source ---|---|--- 2025-09-12 00:52:40+00:00| seen| https://bsky.app/profile/silverpill.mitra.social.ap.brid.gy/post/3lym2ckpmwpy2...
CVE-2025-58763
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. A command injection vulnerability in Tautulli v2.15.3 and prior allows attackers with administrative privileges to obtain remote code execution on the application server. This vulnerability requires the application to...
GHSA-FR2G-FCJJ-V8HC vulnerabilities
Vulnerabilities for packages: linux-qemu, linux-vmware, linux-qemu-rc...
GHSA-3PVJ-Q7QJ-89FG vulnerabilities
Vulnerabilities for packages: libssh, libssh2...
CVE-2025-10157
creationtimestamp| type| source ---|---|--- 2025-09-10 17:15:33+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-f7qq-56ww-84cr...
GHSA-GCF6-VGCR-474F vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-RRJV-57MM-J6CM vulnerabilities
Vulnerabilities for packages: nodejs...
Phish-Blitz: Advancing Phishing Detection with Comprehensive Webpage Resource Collection and Visual Integrity Preservation
Phishing attacks are increasingly prevalent, with adversaries creating deceptive webpages to steal sensitive information. Despite advancements in machine learning and deep learning for phishing detection, attackers constantly develop new tactics to bypass detection models. As a result, phishing...
Linux Distros Unpatched Vulnerability : CVE-2022-2060
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site Scripting XSS - Stored in GitHub repository dolibarr/dolibarr prior to 16.0. CVE-2022-2060 Note that Nessus relies on the presence of the package as...