100 matches found
CVE-2024-39844
CVE-2024-39844 affects ZNC prior to 1.9.1. The vulnerability is a remote code execution flaw in the modtcl module that can be triggered by a KICK event, enabling an attacker to execute code remotely over the network. Connected advisories and Nessus/NASL records consistently describe this issue an...
CVE-2024-39844
In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...
znc -- remote code execution vulnerability
Mitre reports: In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...
CVE-2024-39844
In ZNC before 1.9.1, remote code execution can occur in modtcl via a KICK...
Agile Approach to Mass Cloud Credential Harvesting and Crypto Mining Sprints Ahead
Developers are not the only people who have adopted the agile methodology for their development processes. From 2023-06-15 to 2023-07-11, Permiso Security's p0 Labs team identified and tracked an attacker developing and deploying eight 8 incremental iterations of their credential harvesting malwa...
SUSE CVE-2013-2274
Puppet 2.6.x before 2.6.18 and Puppet Enterprise 1.2.x before 1.2.7 allows remote authenticated users to execute arbitrary code on the puppet master, or an agent with puppet kick enabled, via a crafted request for a report...
CVE-2022-46584
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacdeny sub415D7C function...
CVE-2022-46586
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacallow sub415B00 function...
Stack overflow
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacdeny sub415D7C function...
CVE-2022-46584
TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the qcawifi.wifi%dvap%d.maclist parameter in the kickbanwifimacdeny sub415D7C function...
Command injection
sopel-channelmgnt is a channelmgnt plugin for sopel. In versions prior to 2.0.1, on some IRC servers, restrictions around the removal of the bot using the kick/kickban command could be bypassed when kicking multiple users at once. We also believe it may have been possible to remove users from oth...
GHSA-23C7-6444-399M Improper Input Validation in sopel-plugins.channelmgnt
Impact On some IRC servers, restrictions around the removal of the bot using the kick/kickban command could be bypassed when kicking multiple users at once. We also believe it may have been possible to remove users from other channels but due to the wonder that is IRC and following RfCs, We have ...
Improper Input Validation in sopel-plugins.channelmgnt
Impact On some IRC servers, restrictions around the removal of the bot using the kick/kickban command could be bypassed when kicking multiple users at once. We also believe it may have been possible to remove users from other channels but due to the wonder that is IRC and following RfCs, We have ...
kickinkombucha.com Improper Access Control vulnerability OBB-1213435
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
kick-n-tip.de XSS vulnerability
Open Bug Bounty ID: OBB-638003 Description| Value ---|--- Affected Website:| kick-n-tip.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Other Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Trend Micro Kicks Off 2018 In Vancouver Helping Those In Need
The holiday season is traditionally a time for friends and family, gift-giving and celebrations. But it’s also a time to remember those less fortunate than ourselves, and to do what we can to make their lives better. As a responsible corporate citizen, Trend Micro is always keen to find new ways ...
kick-off-lit.de XSS vulnerability
Open Bug Bounty ID: OBB-355705 Description| Value ---|--- Affected Website:| kick-off-lit.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
kick-off-lit.de Open Redirect vulnerability
Open Bug Bounty ID: OBB-326129 Description| Value ---|--- Affected Website:| kick-off-lit.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
kick-off.kr XSS vulnerability
Vulnerable URL: http://kick-off.kr/pub/halftime.aspx?mode=view=117116=1="' /Style=position:fixed;top:0;left:0;font-size:999px; /Onmouseenter=confirmOPENBUGBOUNTY //= Details: Description| Value ---|--- Patched:| No Latest check for patch:| 04.08.2017 Vulnerability type:| XSS Vulnerability status:...
Pixel Soccer - Flick Free Kick - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Pixel Soccer - Flick Free Kick published at the 'play' market has multiple vulnerabilities...