Lucene search
K

45 matches found

NVD
NVD
added 2026/06/22 4:16 p.m.9 views

CVE-2026-8934

A Missing Authorization vulnerability in a GraphQL private API operation of the Google App Engine section of the Cloud Console allows an unauthenticated remote attacker to leak sensitive App Engine request logs from other projects using a specially crafted request. This vulnerability was patched ...

6.9CVSS0.00364EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/22 3:20 p.m.3 views

CVE-2026-8934

A Missing Authorization vulnerability in a GraphQL private API operation of the Google App Engine section of the Cloud Console allows an unauthenticated remote attacker to leak sensitive App Engine request logs from other projects using a specially crafted request. This vulnerability was patched ...

6.9CVSS5.9AI score0.00364EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/22 3:20 p.m.32 views

CVE-2026-8934 Cross-Project Information Leakage in Google App Engine UI

A Missing Authorization vulnerability in a GraphQL private API operation of the Google App Engine section of the Cloud Console allows an unauthenticated remote attacker to leak sensitive App Engine request logs from other projects using a specially crafted request. This vulnerability was patched ...

6.9CVSS0.00364EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-4154

Malware in sbrugna...

7.2CVSS6.4AI score0.00233EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-1371

Malware in sbrugna...

6.8CVSS6.1AI score0.00495EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-4153

Malware in sbrugna...

7.2CVSS6.4AI score0.0022EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-4155

Malware in sbrugna...

7.2CVSS6.4AI score0.0024EPSS
Exploits1References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/07/26 4:53 p.m.8 views

Malicious code in google-appengine-ext (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 142a8fbc789954291f2b01aab5ac1d139eaaf4f9f490fd6dcf30da438f7d8e51 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

7.3AI score
Exploits0References1
The Hacker News
The Hacker News
added 2021/03/18 9:5 a.m.7 views

Google Reveals What Personal Data Chrome and Its Apps Collect On You

Privacy-focused search engine DuckDuckGo called out rival Google for "spying" on users after the search giant updated its flagship app to spell out the exact kinds of information it collects for personalization and marketing purposes. "After months of stalling, Google finally revealed how much...

5.8AI score
Exploits0
HackRead
HackRead
added 2019/01/26 6:58 p.m.158 views

Hackers abusing Google App Engine to spread PDF malware

By Waqas The Cobalt Strike advanced persistent threat APT group is using Google App Engine to spread PDF malware against financial firms. The IT security researchers at Netskope have discovered a sophisticated malware campaign in which cybercriminals are abusing Google App Engine GCP, a web...

1.5AI score
Exploits0
ThreatPost
ThreatPost
added 2018/11/28 2:5 p.m.10 views

The Nature of Mass Exploitation Campaigns

We’ve all seen the movies where there’s a dark hooded figure sitting behind a keyboard entering a 3D virtualized representation of the internet. Focusing in on their target, the figure sees various bits of information about that person, from their birth date, to headshot of them stepping out of a...

0.1AI score
Exploits0References5
Talos Blog
Talos Blog
added 2018/10/29 8:30 a.m.20 views

GPlayed's younger brother is a banker — and it's after Russian banks

This blog post is authored by Vitor Ventura. Introduction Cisco Talos published its findings on a new Android trojan known as "GPlayed" on Oct. 11. At the time, we wrote that the trojan seemed to be in the testing stages of development, based on the malware's code patterns, strings and telemetry...

Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2018/08/16 8:13 p.m.59 views

AV-Comparatives: Trend Micro Mobile Security for Android Provides 100% Malware Protection for Mobile Users

With the introduction of Android v8.0 Android Oreo in August of 2017, among other OS improvements Google introduced its built-in malware protection for Android call Play Protect dependent on Google Play Services 11 or later. Play Protect checks apps and APK files downloaded from Google Play or...

1.6AI score
Exploits0
myhack58
myhack58
added 2018/05/28 12:0 a.m.17 views

See how do I find the value of 3 thousand 6 thousand USD Google RCE vulnerability-vulnerability warning-the black bar safety net

! This article tells the story of the Uruguayan public University, 18-year-old student Ezequiel Pereira found Google highest level RCE vulnerability-related process. In the beginning of the year, Ezequiel found Google Google App Engine GAEis a non-production environment of a vulnerability, exploi...

8.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/05/16 4:17 p.m.16 views

appengine.google.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-617281 Description| Value ---|--- Affected Website:| appengine.google.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

Exploits0
myhack58
myhack58
added 2017/05/11 12:0 a.m.31 views

Google said in the release“of the Android O”the new version will not fix the screen hijacking vulnerability-vulnerability warning-the black bar safety net

Millions of Android smartphones are suffering from a serious“screen hijacking”vulnerabilities, a hacker could steal user passwords, Bank details and help ransomware app to steal money. Google is claiming that publishing the“Android O”version does not fix the vulnerability The worst thing is that...

0.2AI score
Exploits0
Akamai Blog
Akamai Blog
added 2017/05/04 1:27 p.m.41 views

Akamai IT Challenge - 100 apps on EAA in 100 days

About a month or so ago I shared a quick video interview with Joe DeFelice. Joe is a Sr. Director Enterprise Security & Infrastructure Engineering here at Akamai. In the video Joe outlines a few of the major initiatives he and the team are working on, including moving towards eliminating the VPN...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2015/10/22 9:6 a.m.11 views

Google App Engine for Java Security Vulnerabilities

A tweak carried out by Google in the Google App Engine for Java continues to stir up security concerns. Oracle this week patched the latest vulnerability in Java SE-the flaw also lives in Google’s platform-as-a-service entry-after it was privately disclosed by Java bug-hunters from Security...

0.3AI score
Exploits0References8
myhack58
myhack58
added 2015/08/25 12:0 a.m.34 views

Android Dolphin Browser remote code execution-vulnerability warning-the black bar safety net

The attacker has the ability to by Android the Dolphin Browser to control the user's network communication data, you can modify the download and application browser new theme function. By using this function, an attacker can write arbitrary files, these files will be in the user device browser...

0.5AI score
Exploits0
myhack58
myhack58
added 2015/05/18 12:0 a.m.23 views

The researchers published GAE Google App Engine sandbox escape and remote code execution vulnerability POC-vulnerability warning-the black bar safety net

Last 1 2 months, security researchers at Google App Engine Google App Engine's Java environment found a large number of high-risk vulnerabilities that an attacker can exploit these vulnerabilities to bypass Google's security sandbox protection. And recently the researchers announced these...

8.2AI score
Exploits0
Rows per page
Query Builder