Lucene search
+L

89 matches found

malwarebytes
malwarebytes
added 2019/05/29 3:0 p.m.52 views

Everything you need to know about ATM attacks and fraud: Part 1

Flashback to two years ago. At exactly 12:33 a.m., a solitary ATM somewhere in Taichung City, Taiwan, spewed out 90,000 TWD New Taiwan Dollar—about US$2,900 today—in bank notes. No one was cashing out money from the ATM at the time. In fact, this seemingly odd system glitch was actually a test: T...

7.7AI score
Exploits0
msrc
msrc
added 2018/02/04 8:0 a.m.7 views

Windows Defender Application Control の紹介

本記事は、Windows Security のブログ “Introducing Windows Defender Application Control” 2017 年 10 月 23 日 米国時間...

2.6AI score
Exploits0
exploitpack
exploitpack
added 2018/02/02 12:0 a.m.21 views

Advance Loan Management System - id SQL Injection

Advance Loan Management System - id SQL Injection Exploit Title: Advance Loan Management System - 'id' SQL Injection Date: 2018-01-31 Exploit Author: 8bitsec Vendor Homepage: https://codecanyon.net/ Software Link:...

Exploits0
zdt
zdt
added 2017/10/26 12:0 a.m.23 views

FS Shutter Stock Clone SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: FS Shutter Stock Clone - 'keywords' SQL Injection Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/shutterstock-clone/ Version: 24 October 17 Tested on: Kali...

7.1AI score
Exploits0
exploitdb
exploitdb
added 2017/10/24 12:0 a.m.24 views

FS Monster Clone - 'id' SQL Injection

Exploit Title: FS Monster Clone - 'id' SQL Injection Date: 2017-10-24 Exploit Author: 8bitsec Vendor Homepage: https://fortunescripts.com/ Software Link: https://fortunescripts.com/product/monster-clone/ Version: 24 October 17 Tested on: Kali Linux 2.0 | Mac OS 10.12.6 Email: [email protected]...

7.4AI score
Exploits0
mageia
mageia
added 2017/09/21 1:43 p.m.35 views

Updated tor packages fix security vulnerability

Due to the code that reports an error during the construction of an introduction point circuit, it is possible that some hidden services will sometimes write sensitive information into their logs if the SafeLogging option is disabled. Note that SafeLogging is enabled by default CVE-2017-0380...

5.9CVSS1.2AI score0.01541EPSS
Exploits0References3
cnvd
cnvd
added 2017/09/21 12:0 a.m.43 views

Joomla! information disclosure vulnerability (CNVD-2017-35315)

Joomla! is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source , cross-platform content management system CMS. A security vulnerability exists in versions of Joomla! prior to 3.8.0. An attacker can exploit the vulnerability to obtain the article introduction...

4.3CVSS6.7AI score0.01704EPSS
Exploits0References1
osv
osv
added 2017/09/18 4:29 p.m.3 views

DEBIAN-CVE-2017-0380

The rendserviceintroestablished function in or/rendservice.c in Tor before 0.2.8.15, 0.2.9.x before 0.2.9.12, 0.3.0.x before 0.3.0.11, 0.3.1.x before 0.3.1.7, and 0.3.2.x before 0.3.2.1-alpha, when SafeLogging is disabled, allows attackers to obtain sensitive information by leveraging access to t...

5.9CVSS6.5AI score0.01541EPSS
Exploits0References1
osv
osv
added 2017/09/18 4:29 p.m.8 views

UBUNTU-CVE-2017-0380

The rendserviceintroestablished function in or/rendservice.c in Tor before 0.2.8.15, 0.2.9.x before 0.2.9.12, 0.3.0.x before 0.3.0.11, 0.3.1.x before 0.3.1.7, and 0.3.2.x before 0.3.2.1-alpha, when SafeLogging is disabled, allows attackers to obtain sensitive information by leveraging access to t...

5.9CVSS6.6AI score0.01541EPSS
Exploits0References4
openbugbounty
openbugbounty
added 2017/07/03 2:33 a.m.11 views

nitrorc.com XSS vulnerability

Vulnerable URL: http://www.nitrorc.com/default2.asp?Introduction=1"...

6.9AI score
Exploits0
openbugbounty
openbugbounty
added 2017/07/02 1:34 p.m.11 views

woosim.com XSS vulnerability

Vulnerable URL: http://woosim.com/aboutus/introduction.php?depth1=1"...

6.9AI score
Exploits0
seebug
seebug
added 2017/05/19 12:0 a.m.45 views

GNU Bash code execution vulnerability in path completion(CVE-2017-5932)

1 Introduction GNU Bash from version 4.4 contains two bugs in its path completion feature leading to a code execution vulnerability. An exploit can be realized by creating a file or directory with a specially crafted name. A user utilizing GNU Bash's built-in path completion by hitting the Tab...

4.6CVSS8AI score0.00425EPSS
Exploits2
exploitpack
exploitpack
added 2016/11/22 12:0 a.m.38 views

AppFusions Doxygen for Atlassian Confluence 1.3.2 - Cross-Site Scripting

AppFusions Doxygen for Atlassian Confluence 1.3.2 - Cross-Site Scripting RCESEC-2016-009 AppFusions Doxygen for Atlassian Confluence v1.3.2 renderContent Persistent Cross-Site Scripting RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product:...

6.8AI score
Exploits0
nessus
nessus
added 2015/04/28 12:0 a.m.23 views

Mandriva Linux Security Advisory : tor (MDVSA-2015:205)

Updated tor packages fix security vulnerabilities : disgleirio discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the service inaccessible CVE-2015-2928. DonnchaC discovered that Tor clients would crash with an...

7.5CVSS7.3AI score0.01384EPSS
Exploits0References3
mageia
mageia
added 2015/04/15 9:1 a.m.35 views

Updated tor packages fix security vulnerabilities

"disgleirio" discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the service inaccessible CVE-2015-2928. "DonnchaC" discovered that Tor clients would crash with an assertion failure upon parsing specially crafted hidde...

7.5CVSS7.4AI score0.01384EPSS
Exploits0References3
nessus
nessus
added 2015/04/08 12:0 a.m.30 views

Debian DSA-3216-1 : tor - security update

Several vulnerabilities have been discovered in Tor, a connection-based low-latency anonymous communication system : - CVE-2015-2928 'disgleirio' discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the service...

7.5CVSS7.5AI score0.01384EPSS
Exploits0References6
nessus
nessus
added 2015/04/07 12:0 a.m.36 views

Debian DLA-187-1 : tor security update

Several hidden service related denial of service issues have been discovered in Tor, a connection-based low-latency anonymous communication system. o 'disgleirio' discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the...

7.5CVSS7.5AI score0.01384EPSS
Exploits0References4
osv
osv
added 2015/04/06 12:0 a.m.22 views

DLA-187-1 tor - security update

Bulletin has no description...

7.5CVSS7.4AI score0.01384EPSS
Exploits0
myhack58
myhack58
added 2014/05/08 12:0 a.m.13 views

For the recent Bosch global eye OAuth vulnerability analysis and preventive recommendations-vulnerability warning-the black bar safety net

According to CnetreportsSingapore Nanyang Technological University, a man named Wang Jing PhD student, found that the OAuth and OpenID open source login tools the“covert redirect”vulnerabilityCovert Redirect to. First of all need to clear point is that the vulnerability is not present in the OAut...

7.2AI score
Exploits0
ubuntucve
ubuntucve
added 2013/04/22 12:0 a.m.38 views

CVE-2013-3227

The caifseqpktrecvmsg function in net/caif/caifsocket.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS6.8AI score0.00378EPSS
Exploits0References13
Rows per page
Query Builder