7721 matches found
FTP Fetch, Windows Meterpreter Shell, Reverse HTTPS Inline
Fetch and execute an x86 payload from an FTP server. Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. Module Options msf use payload/cmd/windows/ftp/x86/meterpreterreversehttps msf payloadmeterpreterreversehttps show actions ...actions... msf...
FTP Fetch, Windows Meterpreter Shell, Reverse HTTPS Inline (x64)
Fetch and execute an x64 payload from an FTP server. Connect back to attacker and spawn a Meterpreter shell. Requires Windows XP SP2 or newer. Module Options msf use payload/cmd/windows/ftp/x64/meterpreterreversehttps msf payloadmeterpreterreversehttps show actions ...actions... msf...
FTP Fetch, Windows x64 Reverse HTTPS Stager (winhttp)
Fetch and execute an x64 payload from an FTP server. Tunnel communication over HTTPS Windows x64 winhttp Module Options msf use payload/cmd/windows/ftp/x64/vncinject/reversewinhttps msf payloadreversewinhttps show actions ...actions... msf payloadreversewinhttps set ACTION msf...
HTTPS Fetch, Linux dup2 Command Shell, Reverse TCP Stager
Fetch and execute an RISC-V 32-bit payload from an HTTPS server. dup2 socket in s1, then execve. Connect back to the attacker Module Options msf use payload/cmd/linux/https/riscv32le/shell/reversetcp msf payloadreversetcp show actions ...actions... msf payloadreversetcp set ACTION msf...
CVE-2026-15000
creationtimestamp| type| source ---|---|--- 2026-07-09 22:33:19+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mqaouyr2752e...
CVE-2026-47828
During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates to the new VM's DAV blobstore over HTTPS without verifying the server certificate, even though a CA certificate for that endpoint is available in the installation manifest. A network...
CVE-2026-8651
Limited authentication bypass by spoofing vulnerability in Progress MOVEit Transfer HTTPS module. This issue affects MOVEit Transfer: before 2025.0.7, from 2025.1.0 before 2025.1.3...
EUVD-2026-42381
Limited authentication bypass by spoofing vulnerability in Progress MOVEit Transfer HTTPS module. This issue affects MOVEit Transfer: before 2025.0.7, from 2025.1.0 before 2025.1.3...
CVE-2026-8651
Limited authentication bypass by spoofing vulnerability in Progress MOVEit Transfer HTTPS module. This issue affects MOVEit Transfer: before 2025.0.7, from 2025.1.0 before 2025.1.3...
CVE-2026-14739
creationtimestamp| type| source ---|---|--- 2026-07-08 00:34:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mq3uqppnkw2i 2026-07-08 14:10:06+00:00| seen| https://bsky.app/profile/stackflag.bsky.social/post/3mq5ccbcr3u2b 2026-07-09 09:42:04+00:00| seen|...
CVE-2025-50492
creationtimestamp| type| source ---|---|--- 2026-07-06 06:08:07+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpxggl6bz52i...
CVE-2025-71343
creationtimestamp| type| source ---|---|--- 2026-07-04 04:16:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mps7arpltr27 2026-07-04 06:14:47+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mpsfunjwiy2x 2026-07-04 15:01:15+00:00| seen|...
CVE-2026-57765
creationtimestamp| type| source ---|---|--- 2026-07-02 12:14:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpnyzwok7p2w 2026-07-02 13:42:44+00:00| seen| https://bsky.app/profile/malwareobserver.bsky.social/post/3mpo5xsoa2s2m 2026-07-03 00:46:54+00:00| seen|...
CVE-2026-55597
creationtimestamp| type| source ---|---|--- 2026-07-02 11:56:32+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpnxzt4tn52o 2026-07-03 13:27:32+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqnlk6zdd2y...
CVE-2026-14417
creationtimestamp| type| source ---|---|--- 2026-07-02 00:09:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpmqj2s5wc2e 2026-07-02 02:01:28+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpmwrtq35n2x 2026-07-02 03:00:27+00:00| seen|...
MAL-2026-6772 Malicious code in @marketfront/customdealsfeed (npm)
The @marketfront/customdealsfeed package is part of a 25-package malicious campaign batch-published to the @marketfront npm scope by npm user 'marketfront' [email protected] within a roughly 3-minute window on 2026-07-01. All packages in the campaign were published at version 7.0.0 and use...
Malicious code in @marketfront/errorcounter (npm)
The @marketfront/errorcounter package is part of a 25-package malicious campaign batch-published to the @marketfront npm scope by npm user 'marketfront' [email protected] within a roughly 3-minute window on 2026-07-01. All packages in the campaign were published at version 7.0.0 and use...
MAL-2026-6774 Malicious code in @marketfront/devtoolsloader (npm)
The @marketfront/devtoolsloader package is part of a 25-package malicious campaign batch-published to the @marketfront npm scope by npm user 'marketfront' [email protected] within a roughly 3-minute window on 2026-07-01. All packages in the campaign were published at version 7.0.0 and use...
Malicious code in @marketfront/blenderdevtool (npm)
The @marketfront/blenderdevtool package is part of a 25-package malicious campaign batch-published to the @marketfront npm scope by npm user 'marketfront' [email protected] within a roughly 3-minute window on 2026-07-01. All packages in the campaign were published at version 7.0.0 and use...
CVE-2026-13999
creationtimestamp| type| source ---|---|--- 2026-07-01 21:17:41+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpmgwfxuab26 2026-07-02 07:48:50+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260702 2026-07-06 07:21:14+00:00| seen|...