Lucene search
K

2837 matches found

The Hacker News
The Hacker News
added 2026/02/12 7:32 a.m.16 views

83% of Ivanti EPMM Exploits Linked to Single IP on Bulletproof Hosting Infrastructure

A significant chunk of the exploitation attempts targeting a newly disclosed security flaw in Ivanti Endpoint Manager Mobile EPMM can be traced back to a single IP address on bulletproof hosting infrastructure offered by PROSPERO. Threat intelligence firm GreyNoise said it recorded 417 exploitati...

10CVSS7.1AI score0.98871EPSS
Exploits77
Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.14 views

openSUSE 16 Security Update : tailscale (openSUSE-SU-2026:20192-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20192-1 advisory. Changes in tailscale: - Update to version 1.94.0: IS SET and NOT SET have been added as device posture operators India DERP Region City Name...

7.5CVSS8.4AI score0.00868EPSS
Exploits0References5
Rapid7 Blog
Rapid7 Blog
added 2026/02/05 3:0 p.m.12 views

Chrysalis, Notepad++, and Supply Chain Risk: What it Means, and What to Do Next

When Rapid7 published its analysis of the Chrysalis backdoor linked to a compromise of Notepad++ update infrastructure, it raised understandable questions from customers and security teams. The investigation showed that attackers did not exploit a flaw in the application itself. Instead, they...

5.7AI score
Exploits0
HackRead
HackRead
added 2026/02/05 12:43 p.m.8 views

Sanctioned Bulletproof Host Linked to Hijacking of Old Home Routers

Compromised home routers in 30+ countries had DNS traffic redirected, sending users to malicious sites while normal browsing appeared unaffected...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/04 1:20 p.m.5 views

CVE-2025-6397

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS.This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...

8.6CVSS5.3AI score0.00234EPSS
Exploits0References1
NVD
NVD
added 2026/02/03 1:15 p.m.6 views

CVE-2025-6397

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS. This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...

8.6CVSS0.00234EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/03 12:15 p.m.4 views

CVE-2025-6397 XSS in Ankara Hosting's web site

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS. This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...

8.6CVSS5.4AI score0.00234EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/03 12:15 p.m.29 views

CVE-2025-6397 XSS in Ankara Hosting's web site

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS. This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...

8.6CVSS0.00234EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:15 p.m.3 views

CVE-2025-6397

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS. This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...

8.6CVSS5.4AI score0.00234EPSS
Exploits0References3
CVE
CVE
added 2026/02/03 12:15 p.m.14 views

CVE-2025-6397

The CVE-2025-6397 entry corresponds to an XSS in Ankara Hosting Website Design Website Software, specifically a Reflected XSS due to improper neutralization of input during web page generation. The PT-2026-5942 detail identifies the affected software as Ankara Hosting Website Design Website Softw...

8.6CVSS5.2AI score0.00234EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/03 12:15 p.m.5 views

EUVD-2025-206769

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Ankara Hosting Website Design Website Software allows Reflected XSS.This issue affects Website Software: through 03022026. NOTE: The vendor was contacted early about this disclosure but did...

8.6CVSS5.3AI score0.00234EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/02/03 4:55 a.m.18 views

Notepad++ Hosting Breach Attributed to China-Linked Lotus Blossom Hacking Group

A China-linked threat actor known as Lotus Blossom has been attributed with medium confidence to the recently discovered compromise of the infrastructure hosting Notepad++. The attack enabled the state-sponsored hacking group to deliver a previously undocumented backdoor codenamed Chrysalis to...

6.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.4 views

PT-2026-5942

Name of the Vulnerable Software and Affected Versions Ankara Hosting Website Design Website Software version 03022026 Description The software contains a Reflected Cross-site Scripting XSS issue due to improper neutralization of input during web page generation. This allows an attacker to inject...

8.6CVSS5.4AI score0.00234EPSS
Exploits0References5
HackRead
HackRead
added 2026/02/02 5:24 p.m.6 views

Notepad++ Updates Delivered Malware After Hosting Provider Breach

A months-long breach allowed Chinese State-sponsored hackers to hijack Notepad++ updates in 2025, exposing users to malware via a compromised hosting provider...

5.4AI score
Exploits0
The Hacker News
The Hacker News
added 2026/02/02 8:55 a.m.16 views

Notepad++ Official Update Mechanism Hijacked to Deliver Malware to Select Users

The maintainer of Notepad++ has revealed that state-sponsored attackers hijacked the utility's update mechanism to redirect update traffic to malicious servers instead. "The attack involved an infrastructure-level compromise that allowed malicious actors to intercept and redirect update traffic...

5.9AI score
Exploits0
EUVD
EUVD
added 2026/01/30 9:59 p.m.7 views

EUVD-2026-5001

LocalSend is a free, open-source app that allows users to share files and messages with nearby devices over their local network without needing an internet connection. In versions up to and including 1.17.0, when a user initiates a "Share via Link" session, the LocalSend application starts a loca...

6.1CVSS5.8AI score0.00278EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.7 views

Ghost cross-site scripting vulnerabilities

Ghost is a hosting service developed by the Ghost open-source project. Versions of Ghost from 5.43.0 to 5.12.04, as well as 6.0.0 to 6.14.0, have a cross-site scripting vulnerability. This vulnerability arises because specially crafted links may execute JavaScript, potentially leading to account...

8.8CVSS5.7AI score0.00255EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2026/01/23 11:7 p.m.11 views

K000159681: Credential harvesting campaign targeting F5 VPN users

On January 13, 2026, researchers identified a large-scale credential harvesting campaign targeting several VPN providers, including F5. The threat actors behind the campaign registered numerous doppelgänger domains designed to mimic legitimate F5 domains. These domains are used to deceive victims...

5.4AI score
Exploits0
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.8 views

YetiShare File Hosting Script security vulnerability

YetiShare File Hosting Script is a file hosting system provided by the British company YetiShare. Version 5.1.0 of YetiShare File Hosting Script contains a security vulnerability. This vulnerability stems from a server-side request forgeing issue in the remote file upload function, which may lead...

6.9CVSS5.8AI score0.00258EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/22 10:8 p.m.23 views

CVE-2026-23499

Saleor is an e-commerce platform. Starting in version 3.0.0 and prior to versions 3.20.108, 3.21.43, and 3.22.27, Saleor allowed authenticated staff users or Apps to upload arbitrary files, including malicious HTML and SVG files containing Javascript. Depending on the deployment strategy, these...

8.5CVSS5.9AI score0.00228EPSS
Exploits1References1
Rows per page
Query Builder