CVE-2021-41130

Extensible Service Proxy, a.k.a. ESP is a proxy which enables API management capabilities for JSON/REST or gRPC API services. ESPv1 can be configured to authenticate a JWT token. Its verified JWT claim is passed to the application by HTTP header "X-Endpoint-API-UserInfo", the application can use ...

CVE-2024-56717 net: mscc: ocelot: fix incorrect IFH SRC_PORT field in ocelot_ifh_set_basic()

In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: fix incorrect IFH SRCPORT field in ocelotifhsetbasic Packets injected by the CPU should have a SRCPORT field equal to the CPU port module index in the Analyzer block ocelot-numphysports. The blamed commit copie...

Zeebsploit - Web Scanner / Exploitation / Information Gathering

zeebsploit is a tool for hacking searching for web information and scanning vulnerabilities of a web Installation & Usage apt-get install git git clone https://github.com/jaxBCD/Zeebsploit.git cd Zeebsploit chmod +x install ./install python3 zeebsploit.py type 'help' for show modules and follow...

FastStone MaxView Denial of Service Vulnerability

FastStone MaxView is an image viewer. A denial of service vulnerability exists in FastStone MaxView versions 3.0 and 3.1. An attacker can exploit the vulnerability to cause a denial of service application crash via a misformatted BMP image with a crafted biSize field in the BITMAPINFOHEADER secti...

dzzoffice information title of the stored XSS vulnerability

0x01 vulnerability profile dzzoffice stored XSs one comfortably the background can be hit cookie 0x02 vulnerability details The point of the desktop information new In the information header of the inserted code may trigger a call to the xss platform insert 只要用户访问就可以打到他cookie了 0x03 solution...