Lucene search
K

29751 matches found

Circl
Circl
added 2025/09/15 9:53 p.m.6 views

CVE-2020-11514

creationtimestamp| type| source ---|---|--- 2025-09-15 21:53:34+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2020/CVE-2020-11514.yaml 2025-09-16 21:02:25+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lyy7rtj3it27...

9.8CVSS9AI score0.09106EPSS
Exploits2References2
Circl
Circl
added 2025/09/15 1:18 p.m.5 views

CVE-2025-59377

creationtimestamp| type| source ---|---|--- 2025-09-15 13:18:08+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/51708...

9.8CVSS4.8AI score0.01235EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/15 1:17 p.m.5 views

Malicious code in ng2-file-upload (npm)

The package ng2-file-upload was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in...

6.7AI score
Exploits0References7
OSV
OSV
added 2025/09/15 1:17 p.m.2 views

MAL-2025-47196 Malicious code in ng2-file-upload (npm)

The package ng2-file-upload was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in...

6.7AI score
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/15 12:12 p.m.5 views

Malicious code in ngx-bootstrap (npm)

The package ngx-bootstrap was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in t...

6.7AI score
Exploits0References7
OSV
OSV
added 2025/09/15 12:12 p.m.4 views

MAL-2025-47197 Malicious code in ngx-bootstrap (npm)

The package ngx-bootstrap was found have been identified as potentially malicious due to the inclusion of a minified postinstall script. It is considered suspicious because: The script appears to attempt to steal access tokens for npm, GitHub, AWS, GCP, etc. There is no changelog or new tags in t...

6.7AI score
Exploits0References7
Gitee
Gitee
added 2025/09/14 1:55 p.m.106 views

offensiveinterview

It is an offensive tool for penetration testing and red teaming. The repository contains a collection of interview questions to screen offensive red team/pentest candidates, categorized into open-ended, knowledge-based, and scenario-based questions. The questions cover various topics such as...

7.1AI score
Exploits0
Circl
Circl
added 2025/09/14 4:33 a.m.3 views

GHSA-QHXP-V273-G94H

creationtimestamp| type| source ---|---|--- 2025-09-14 04:33:01+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3lyrhkwlxt72c...

5.8AI score
Exploits0References1
Gitee
Gitee
added 2025/09/13 9:8 p.m.83 views

pwntools

This is a CTF Capture The Flag framework and exploit development library. It is written in Python and provides a set of tools for developing and executing exploits. The library is designed to be extensible and customizable, allowing users to easily add new functionality and plugins. The library i...

6.9AI score
Exploits0
Gitee
Gitee
added 2025/09/13 1:25 a.m.102 views

hackingtool

This is an all-in-one hacking tool for hackers, written in Python. The tool is designed to be run on Linux, Kali Linux, or Parrot OS. It provides a menu-driven interface for various hacking tasks, including information gathering, wireless attacks, SQL injection, phishing, web attacks,...

7.8AI score
Exploits0
OSV
OSV
added 2025/09/12 2:25 p.m.4 views

OESA-2025-2262 aide security update

Security Fixes: A vulnerability was found in AIDE up to 0.19.1 and classified as problematic.Using CWE to declare the problem leads to CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.Impacted is integrity.Upgrading to version 0.19.2 eliminates th...

6.2CVSS6.2AI score0.00216EPSS
Exploits2References3
Circl
Circl
added 2025/09/12 12:52 a.m.3 views

GHSA-JHRQ-QVRM-QR36

creationtimestamp| type| source ---|---|--- 2025-09-12 00:52:40+00:00| seen| https://bsky.app/profile/silverpill.mitra.social.ap.brid.gy/post/3lym2ckpmwpy2...

5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/11 8:27 p.m.6 views

CVE-2025-58763

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. A command injection vulnerability in Tautulli v2.15.3 and prior allows attackers with administrative privileges to obtain remote code execution on the application server. This vulnerability requires the application to...

8CVSS8.6AI score0.01675EPSS
Exploits1References1
Chainguard
Chainguard
added 2025/09/11 2:22 p.m.3 views

GHSA-FR2G-FCJJ-V8HC vulnerabilities

Vulnerabilities for packages: linux-qemu, linux-vmware, linux-qemu-rc...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2025/09/11 7:51 a.m.2 views

GHSA-3PVJ-Q7QJ-89FG vulnerabilities

Vulnerabilities for packages: libssh, libssh2...

5.8AI score
Exploits0
Circl
Circl
added 2025/09/10 5:15 p.m.5 views

CVE-2025-10157

creationtimestamp| type| source ---|---|--- 2025-09-10 17:15:33+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-f7qq-56ww-84cr...

9.3CVSS7.4AI score0.00761EPSS
Exploits1References1
Wolfi
Wolfi
added 2025/09/10 1:53 p.m.2 views

GHSA-GCF6-VGCR-474F vulnerabilities

Vulnerabilities for packages: nodejs...

7AI score
Exploits0
Wolfi
Wolfi
added 2025/09/10 1:53 p.m.3 views

GHSA-RRJV-57MM-J6CM vulnerabilities

Vulnerabilities for packages: nodejs...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/09/10 12:0 a.m.2 views

Phish-Blitz: Advancing Phishing Detection with Comprehensive Webpage Resource Collection and Visual Integrity Preservation

Phishing attacks are increasingly prevalent, with adversaries creating deceptive webpages to steal sensitive information. Despite advancements in machine learning and deep learning for phishing detection, attackers constantly develop new tactics to bypass detection models. As a result, phishing...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-2060

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site Scripting XSS - Stored in GitHub repository dolibarr/dolibarr prior to 16.0. CVE-2022-2060 Note that Nessus relies on the presence of the package as...

8.4CVSS6.7AI score0.00863EPSS
Exploits1References2
Rows per page
Query Builder