CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2024/07/16 5:35 a.m.•6 views

MAL-2024-7764 Malicious code in evil-hitcon-2024 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bbe1b43a902dc36ccbd6d7dc4e8f50682dc9580bc0bd95e4a572151f480e3116 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score

Exploits0References1

OSSF Malicious Packages•added 2024/07/16 5:35 a.m.•2 views

Malicious code in evil-hitcon-2024 (npm)

6.9AI score

Exploits0References1

GithubExploit•added 2023/08/21 12:31 a.m.•653 views

Exploit for CVE-2023-20562

HITCON 2023 Demo CVE-2023-20562 Description This demonstra...

7.8CVSS8AI score0.10234EPSS

Exploits2

Positive Technologies•added 2023/08/08 12:0 a.m.•3 views

PT-2023-5023 · Amd · Amd Uprof

Name of the Vulnerable Software and Affected Versions: AMD uProf affected versions not specified Description: Insufficient validation in the IOCTL input buffer in AMD uProf may allow an authenticated user to load an unsigned driver, potentially leading to arbitrary kernel execution. The issue can...

7.8CVSS8AI score0.10234EPSS

Exploits2References17

Trend Micro Simply Security•added 2022/11/09 12:0 a.m.•19 views

Hack the Real Box: APT41’s New Subgroup Earth Longzhi

We looked into the campaigns deployed by a new subgroup of advanced persistent threat APT group APT41, Earth Longzhi. This entry breaks down the technical details of the campaigns in full as presented at HITCON PEACE 2022 in August...

1.1AI score

Gitee•added 2020/03/23 1:22 p.m.•3 views

hitconDockerfile

This repository is an offensive tool for web application exploitation. It contains a collection of web challenges created by the user "Pr0phet" for the HITCON CTF Capture The Flag series. The challenges are designed to test various web application vulnerabilities, including SQL injection, SSRF...

8.5AI score

myhack58•added 2017/03/01 12:0 a.m.•466 views

HEVD kernel vulnerability training-with Windows play-bug warning-the black bar safety net

For this training of the research study will kernel vulnerability principle, the use of the way, under Windows many common data structures have a preliminary understanding, from the open Ring0 gate. HEVD project address: https://github.com/hacksysteam/HackSysExtremeVulnerableDriver For the kernel...

7.2CVSS7.7AI score0.78459EPSS

Exploits23

ThreatPost•added 2015/03/02 1:58 p.m.•30 views

Angler Adds Keen Team Use After Free IE Vulnerability

Attackers behind the Angler Exploit Kit have added a tweaked version of an exploit for a patched Internet Explorer use-after-free vulnerability. Microsoft patched the vulnerability MS14-056 in last October’s round of Patch Tuesday updates but that hasn’t stopped attackers from adding the...

10CVSS0.4AI score0.94354EPSS

Exploits42References13

0day.today•added 2015/01/30 12:0 a.m.•35 views

X360 VideoPlayer ActiveX Control 2.6 - Full ASLR & DEP Bypass Exploit

Exploit for windows platform in category remote exploits !-- Exploit Title: X360 VideoPlayer ActiveX Control RCE Full ASLR & DEP Bypass Author: Rh0 Date: Jan 30 2015 Affected Software: X360 VideoPlayer ActiveX Control 2.6 VideoPlayer.ocx Vulnerability: Buffer Overflow in Data Section Tested on:...

seebug.org•added 2014/07/01 12:0 a.m.•17 views

ErfurtWiki <= R1.02b (css) Local File Inclusion Vulnerabilities

No description provided by source. / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title...

seebug.org•added 2014/07/01 12:0 a.m.•8 views

youtube blog 0.1 (rfi/sql/xss) Multiple Vulnerabilities

Exploit DB•added 2013/09/10 12:0 a.m.•37 views

Microsoft Internet Explorer - CAnchorElement Use-After-Free (MS13-055) (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "MS13-055 Microsof...

Metasploit•added 2013/09/09 1:2 a.m.•26 views

MS13-055 Microsoft Internet Explorer CAnchorElement Use-After-Free

In IE8 standards mode, it's possible to cause a use-after-free condition by first creating an illogical table tree, where a CPhraseElement comes after CTableRow, with the final node being a sub table element. When the CPhraseElement's outer content is reset by using either outerText or outerHTML...

8.8CVSS7.8AI score0.84554EPSS

Exploits7

Packet Storm•added 2008/07/22 12:0 a.m.•21 views

youtubeblog-rfisqlxss.txt

/ | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: YouTube Blog 0.1 Multiple Remote...

Packet Storm•added 2008/07/22 12:0 a.m.•15 views

modjk1219-overflow.txt

!/usr/bin/python / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title =======:: Apache modjk...

seebug.org•added 2008/07/19 12:0 a.m.•9 views

Apache mod_jk 1.2.19 Remote Buffer Overflow Exploit (win32)

No description provided by source. !/usr/bin/python / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || ||||...

seebug.org•added 2008/06/11 12:0 a.m.•17 views

yBlog 0.2.2.2 (XSS/SQL) Multiple Remote Vulnerabilities

Exploit DB•added 2008/06/10 12:0 a.m.•38 views

Yblog 0.2.2.2 - Cross-Site Scripting / SQL Injection

exploitpack•added 2008/06/10 12:0 a.m.•17 views

ErfurtWiki R1.02b - Local File Inclusion

ErfurtWiki R1.02b - Local File Inclusion / | || | | | | | | | | /| | | | | || ||| ||||| || C. H. R. O. O. T. SECURITY GROUP - -- ----- --- -- -- ---- --- -- - http://www.chroot.org Hacks In Taiwan | || | | | | | | | Conference 2008 | | | | | | | | | || ||| || |||| http://www.hitcon.org Title...