Lucene search
K

100 matches found

Malwarebytes
Malwarebytes
added 2026/05/08 12:0 p.m.13 views

ShinyHunters escalates Canvas attacks with school login defacements

Days after confirming a major data breach, Instructure is now facing a second blow. Earlier this week, Instructure confirmed a major data breach affecting its cloud‑hosted Canvas environment, with the ShinyHunters group claiming it stole hundreds of millions of records tied to thousands of school...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 12:29 p.m.4 views

CVE-2023-40519

A cross-site scripting XSS vulnerability in the bpk-common/auth/login/index.html login portal in Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575ee9195b0, 01.01.01.30097902fd999e76, and 00.12.01.95655881254b459 allows remote attackers to inject arbitrary web script or HTML v...

6.1CVSS5.7AI score0.00368EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-19880

Malware in sbrugna...

5.5CVSS5.6AI score0.00451EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-16573

Malware in sbrugna...

6.4CVSS6.3AI score0.02289EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-3481

Malware in sbrugna...

6.1CVSS6.3AI score0.00808EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2022-33639

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.02363EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-30021

Malicious code in bioql PyPI...

8.1CVSS8.2AI score0.00565EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-31096

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01831EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:23 a.m.4 views

CVE-2024-3378

A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login of the component Login Portal. The manipulation of the argument redirectUrl leads to cross site scripting. The attack...

6.1CVSS5.8AI score0.22002EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.20 views

CVE-2022-29152

The Ericom PowerTerm WebConnect 6.0 login portal can unsafely write an XSS payload from the AppPortal cookie into the page...

6.1CVSS6.1AI score0.0053EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:13 p.m.9 views

CVE-2022-29296

A reflected cross-site scripting XSS vulnerability in the login portal of Avantune Genialcloud ProJ - 10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

6.1CVSS5.7AI score0.02363EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:35 p.m.6 views

CVE-2021-34218

Directory Indexing in Login Portal of Login Portal of TOTOLINK-A702R-V1.0.0-B20161227.1023 allows attacker to access /add/ , /img/, /js/, and /mobile directories via GET Parameter...

5.3CVSS6.9AI score0.00815EPSS
Exploits1References1
Metasploit
Metasploit
added 2025/05/21 6:53 p.m.371 views

Clinic's Patient Management System 1.0 - Unauthenticated RCE

This module exploits an SQL injection in login portal, which allows to log in as admin. Next, it allows the attacker to upload malicious files through user modification to achieve RCE. Module Options msf use exploit/multi/http/clinicpmssqlitorce msf exploitclinicpmssqlitorce show targets...

9.8CVSS7.3AI score0.19373EPSS
Exploits8
VulnCheck KEV
VulnCheck KEV
added 2024/12/10 12:0 a.m.4 views

VulnCheck KEV: CVE-2024-3378

A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login of the component Login Portal. The manipulation of the argument redirectUrl leads to cross site scripting. The...

6.1CVSS4.1AI score0.22002EPSS
Exploits4References1
NVD
NVD
added 2024/10/08 5:15 p.m.8 views

CVE-2024-44349

A SQL injection vulnerability in login portal in AnteeoWMS before v4.7.34 allows unauthenticated attackers to execute arbitrary SQL commands via the username parameter and disclosure of some data in the underlying DB...

9.8CVSS0.05618EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/10/08 12:0 a.m.17 views

CVE-2024-44349

A SQL injection vulnerability in login portal in AnteeoWMS before v4.7.34 allows unauthenticated attackers to execute arbitrary SQL commands via the username parameter and disclosure of some data in the underlying DB...

8.9AI score0.05618EPSS
Exploits1References3
CVE
CVE
added 2024/10/08 12:0 a.m.61 views

CVE-2024-44349

AnteeoWMS is affected by a SQL injection in the login portal present in versions prior to 4.7.34. The vulnerability allows unauthenticated attackers to inject SQL via the username parameter and potentially disclose data from the underlying database. The issue is documented across multiple sources...

9.8CVSS8.4AI score0.05618EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.294 views

Cisco SSL VPN Bruteforce Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco SSL VPN Bruteforce Login Utility', 'Description' = % This module scans for Cisco SSL VPN web login portals and performs login brute force t...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.186 views

Cambium EPMP 1000 Login Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cambium ePMP 1000 Login Scanner', 'Description' = % This module scans for Cambium ePMP 1000 management login portals, and attempts to identify...

7.4AI score
Exploits0
OSV
OSV
added 2024/04/06 1:15 p.m.3 views

CVE-2024-3378

A vulnerability has been found in iboss Secure Web Gateway up to 10.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /login of the component Login Portal. The manipulation of the argument redirectUrl leads to cross site scripting. The attack...

6.1CVSS3.5AI score0.22002EPSS
Exploits4References4
Rows per page
Query Builder