Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

Packet Storm
Packet Stormadded 2024/02/19 12:0 a.m.318 views

Microsoft Windows Defender / Detection Bypass Part 3

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: https://hyp3rlinx.altervista.org/advisories/MICROSOFTWINDOWSDEFENDERTROJAN.WIN32.POWESSERE.GMITIGATIONBYPASSPART3.txt + twitter.com/hyp3rlinx + ISR: ApparitionSec Vendor www.microsoft.com Product Windows Defender...

7.4AI score
Exploits0
GithubExploit
GithubExploitadded 2023/02/15 6:12 p.m.630 views

Exploit for CVE-2022-44666

Microsoft Windows Contacts VCF/Contact/LDAP syslink control...

9.3CVSS8AI score0.93596EPSS
Exploits62
Packet Storm
Packet Stormadded 2022/12/12 12:0 a.m.252 views

Trojan-Dropper.Win32.Decay.dxv (CyberGate 1.00.0) MVID-2022-0664 Insecure Proprietary Password Encryption

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/618f28253d1268132a9f10819a6947f2.txt Contact: [email protected] Media: twitter.com/malvuln Backup media: infosec.exchange/@malvuln Threat: Trojan-Dropper.Win32.Decay.dxv CyberGate v1.00.0...

0.5AI score
Exploits0
Packet Storm
Packet Stormadded 2022/11/21 12:0 a.m.302 views

Trojan.Win32.Platinum.gen MVID-2022-0657 Code Execution

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2022 Original source: https://malvuln.com/advisory/71a76adeadc7b51218d265771fc2b0d1.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Platinum.gen Vulnerability: Arbitrary Code Execution Description: The malware...

7.4AI score
Exploits0
Github Security Blog
Github Security Blogadded 2020/01/24 9:27 p.m.44 views

Link injection in SimpleSAMLphp

Background Several scripts part of SimpleSAMLphp display a web page with links obtained from the request parameters. This allows us to enhance usability, as the users are presented with links they can follow after completing a certain action, like logging out. Description The following scripts we...

0.2AI score
Exploits0References3Affected Software1
OSV
OSVadded 2020/01/24 9:27 p.m.11 views

GHSA-2R3V-Q9X3-7G46 Link injection in SimpleSAMLphp

Background Several scripts part of SimpleSAMLphp display a web page with links obtained from the request parameters. This allows us to enhance usability, as the users are presented with links they can follow after completing a certain action, like logging out. Description The following scripts we...

3.7CVSS7AI score
Exploits0References2
0day.today
0day.todayadded 2019/01/20 12:0 a.m.46 views

Microsoft Windows CONTACT - Remote Code Execution Exploit

Exploit for windows platform in category local exploits + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-WINDOWS-CONTACT-FILE-INSUFFECIENT-UI-WARNING-WEBSITE-LINK-ARBITRARY-CODE-EXECUTION.txt + ISR: ApparitionSec...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2018/10/15 12:0 a.m.652 views

NoMachine < 5.3.27 - Remote Code Execution

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/NOMACHINE-TROJAN-FILE-REMOTE-CODE-EXECUTION.txt + ISR: ApparitionSec Greetz: Greetz: indoushka | Eduardo Vendor www.nomachine.com Product NoMachine / hyp3rlinx / / gcc -c -m32...

7.8CVSS7.9AI score0.03667EPSS
Exploits5
Exploit DB
Exploit DBadded 2018/08/29 12:0 a.m.54 views

Argus Surveillance DVR 4.0.0.0 - Directory Traversal

Exploit: Argus Surveillance DVR 4.0.0.0 - Directory Traversal Author: John Page aka hyp3rlinx Date: 2018-08-28 Vendor: www.argussurveillance.com Software Link: http://www.argussurveillance.com/download/DVRstp.exe CVE: N/A Description: Argus Surveillance DVR 4.0.0.0 devices allow Unauthenticated...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2017/09/28 12:0 a.m.40 views

Trend Micro OfficeScan 11.0/XG (12.0) - Server Side Request Forgery

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/TRENDMICRO-OFFICESCAN-XG-SERVER-SIDE-REQUEST-FORGERY.txt + ISR: ApparitionSec Vendor: ================== www.trendmicro.com Product: =========== OfficeScan v11.0 and XG 12.0...

7.4AI score
Exploits0
0day.today
0day.todayadded 2017/04/14 12:0 a.m.78 views

Concrete5 8.1.0 - Host Header Injection Vulnerability

Exploit for php platform in category web applications + Credits: John Page a.k.a hyp3rlinx Vendor: ================== www.concrete5.org Product: ================ concrete5 v8.1.0 concrete5 is an open-source content management system CMS for publishing content on the World Wide Web and intranets...

4.3CVSS6.4AI score0.0362EPSS
Exploits5
Packet Storm
Packet Stormadded 2017/04/10 12:0 a.m.68 views

Moxa MX-AOPC UA Server 1.5 XML Injection

Credits: John Page AKA HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MOXA-MX-AOPC-SERVER-v1.5-XML-EXTERNAL-ENTITY.txt + ISR: ApparitionSec Vendor: ============ www.moxa.com Product: ======================= MX-AOPC UA SERVER - 1.5 Moxa's MX-AOPC...

5.2AI score0.00472EPSS
Exploits5
0day.today
0day.todayadded 2017/04/10 12:0 a.m.56 views

Moxa MXview v2.8 Remote Private Key Disclosure Exploit

Exploit for windows platform in category remote exploits + Credits: John Page AKA HYP3RLINX Vendor: ============ www.moxa.com Product: =========== MXview V2.8 Download: http://www.moxa.com/product/MXstudio.htm MXview Industrial Network Management Software. Auto discovery of network devices and...

5CVSS7.6AI score0.39989EPSS
Exploits5
Packet Storm
Packet Stormadded 2017/02/02 12:0 a.m.48 views

Ghostscript 9.20 Command Execution

Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/GHOSTSCRIPT-FILENAME-COMMAND-EXECUTION.txt + ISR: ApparitionSec + Vendor: =============== ghostscript.com Product: ================ Ghostscript 9.20 gs920w32.exe Windows 32...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2017/01/26 12:0 a.m.18 views

PHP PEAR HTTP_Upload 1.0.0b3 - Arbitrary File Upload

PHP PEAR HTTPUpload 1.0.0b3 - Arbitrary File Upload + + Credits: John Page AKA Hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/PEAR-HTTPUPLOAD-ARBITRARY-FILE-UPLOAD.txt + ISR: ApparitionSEC + Vendor: ============ pear.php.net Product:...

Exploits0
Symantec
Symantecadded 2016/12/08 8:0 a.m.38 views

Symantec VIP Access Desktop Arbitrary DLL Execution

SUMMARY Symantec has released an update to address a finding in VIP Access Desktop that could allow a local user to force VIP Access Desktop UI Manager to execute an arbitrary formatted DLL with logged-on user privileges. AFFECTED PRODUCTS Symantec VIP Access Desktop --- CVE | Affected Versions |...

4.4CVSS0.7AI score0.00344EPSS
Exploits2Affected Software1
exploitpack
exploitpackadded 2016/11/22 12:0 a.m.30 views

EasyPHP Devserver 16.1.1 - Cross-Site Request Forgery Remote Command Execution

EasyPHP Devserver 16.1.1 - Cross-Site Request Forgery Remote Command Execution + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/EASYPHP-DEV-SERVER-REMOTE-CMD-EXECUTION.txt + ISR: ApparitionSec Vendor: ===============...

0.1AI score
Exploits0
exploitpack
exploitpackadded 2016/08/16 12:0 a.m.44 views

WSO2 Carbon 4.4.5 - Denial of Service Cross-Site Request Forgery

WSO2 Carbon 4.4.5 - Denial of Service Cross-Site Request Forgery + Credits: John Page aka HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/WSO2-CARBON-v4.4.5-CSRF-DOS.txt + ISR: ApparitionSec Vendor: ============ www.wso2.com Product:...

3.5CVSS0.4AI score0.02743EPSS
Exploits5
securityvulns
securityvulnsadded 2015/08/24 12:0 a.m.30 views

Hawkeye-G v3.0.1 Persistent XSS & Information Leakage

Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0725.txt Vendor: ================================ www.hexiscyber.com Product: ================================ Hawkeye-G v3.0.1.4912 Hawkeye G is an active defense...

6.4AI score
Exploits0
Exploit DB
Exploit DBadded 2015/08/18 12:0 a.m.22 views

PHPfileNavigator 2.3.3 - Privilege Escalation

Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-PHPFILENAVIGATOR0812b.txt Vendor: ========================= pfn.sourceforge.net Product: ===================================================== PHPfileNavigator v2.3.3 pfn...

7.4AI score
Exploits0
Rows per page
Query Builder