290 matches found
EUVD-2020-27944
Malware in sbrugna...
EUVD-2006-3448
Malware in sbrugna...
EUVD-2017-14035
Malware in sbrugna...
Microsoft Office Multiple Vulnerabilities (Nov 2024) - Mac OS X
This host is missing an important security update for Microsoft Office on Mac OSX according to Microsoft security update November 2024 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Microsoft Office Elevation of Privilege Vulnerability (Sep 2024) - Mac OS X
This host is missing an important security update for Microsoft Office on Mac OSX according to Microsoft security update September 2024 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holder...
Simple Student Attendance System v1.0 Time Based Blind & Union Based SQL Injection Vulnerability
Exploit Title: Simple Student Attendance System v1.0 - 'classid' Time Based Blind & Union Based SQL Injection Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: oretnom23 Vendor Homepage: https://www.sourcecodester.com/php/17018/simple-student-attendance-system-using-php-and-mysql.html Software Link...
Enrollment System 1.0 SQL Injection
Exploit Title: Enrollment System v1.0 - SQL Injection Date: 27 December 2023 Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: Obi08 Vendor Homepage: https://github.com/Obi08/EnrollmentSystem Software Link: https://github.com/Obi08/EnrollmentSystem Version: v1.0 Tested on: Mac OSX, XAMPP, Apache,...
AC Repair and Services System v1.0 - Multiple SQL Injection Vulnerability
Exploit Title: AC Repair and Services System v1.0 - Multiple SQL Injection Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: oretnom23 Vendor Homepage: https://www.sourcecodester.com/php/16513/ac-repair-and-services-system-using-php-and-mysql-source-code-free-download.html Software Link:...
Simple Student Attendance System v1.0 - 'classid' Time Based Blind & Union Based SQL Injection
Exploit Title: Simple Student Attendance System v1.0 - 'classid' Time Based Blind & Union Based SQL Injection Date: 26 December 2023 Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: oretnom23 Vendor Homepage:...
Security Bulletin: IBM Aspera Connect and IBM Aspera Cargo has addressed multiple vulnerabilities (CVE-2023-22862, CVE-2023-27285)
Summary This Security Bulletin addresses security vulnerabilities that have been remediated in IBM Aspera Connect 4.2.6 and IBM Aspera Cargo 4.2.6. Vulnerability Details CVEID:CVE-2023-22862 DESCRIPTION: IBM Aspera Connect and IBM Aspera Cargo transmits authentication credentials, but it uses an...
Security Bulletin: IBM Aspera faspio Gateway affected by OpenSSL vulnerabilities (CVE-2022-3602, CVE-2022-3786)
Summary IBM Aspera faspio Gateway 1.3.1 has addressed the following vulnerabilities. Vulnerability Details CVEID:CVE-2022-3602 DESCRIPTION: OpenSSL is vulnerable to a stack-based buffer overflow, caused by improper bounds checking during X.509 certificate verification. By using a specially-crafte...
Exploit for OS Command Injection in Telesquare Sdt-Cs3B1_Firmware
It is an exploit module for CVE-2021-46422, a remote code execut...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
PoC exploit for CVE-2022-26134, a remote code execution vulnerab...
Dingtian-DT-R002 3.1.276A - Authentication Bypass Exploit
Exploit Title: Dingtian-DT-R002 3.1.276A - Authentication Bypass Exploit Author: Victor Hanna Trustwave SpiderLabs Author Github Page: https://9lyph.github.io/CVE-2022-29593/ Vendor Homepage: https://www.dingtian-tech.com/enus/relay4.html Software Link:...
Dingtian-DT-R002 3.1.276A Authentication Bypass
Exploit Title: Dingtian-DT-R002 3.1.276A - Authentication Bypass Google Dork: NA Date: 13th July 2022 Exploit Author: Victor Hanna Trustwave SpiderLabs Author Github Page: https://9lyph.github.io/CVE-2022-29593/ Vendor Homepage: https://www.dingtian-tech.com/enus/relay4.html Software Link:...
Dingtian-DT-R002 3.1.276A - Authentication Bypass
Exploit Title: Dingtian-DT-R002 3.1.276A - Authentication Bypass Google Dork: NA Date: 13th July 2022 Exploit Author: Victor Hanna Trustwave SpiderLabs Author Github Page: https://9lyph.github.io/CVE-2022-29593/ Vendor Homepage: https://www.dingtian-tech.com/enus/relay4.html Software Link:...
GHSA-269Q-HMXG-M83Q Local Information Disclosure Vulnerability in io.netty:netty-codec-http
Description GHSA-5mcr-gq6c-3hq2 CVE-2021-21290 contains an insufficient fix for the vulnerability identified. Impact When netty's multipart decoders are used local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. This...
Local Information Disclosure Vulnerability in io.netty:netty-codec-http
Description GHSA-5mcr-gq6c-3hq2 CVE-2021-21290 contains an insufficient fix for the vulnerability identified. Impact When netty's multipart decoders are used local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. This...
CVE-2022-24823 Local Information Disclosure Vulnerability in io.netty:netty-codec-http
Netty is an open-source, asynchronous event-driven network application framework. The package io.netty:netty-codec-http prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multipart decoders are used local information disclosure can occur via the local syst...
Talisman - By Hooking Into The Pre-Push Hook Provided By Git, Talisman Validates The Outgoing Changeset For Things That Look Suspicious
A tool to detect and prevent secrets from getting checked in What is Talisman? Talisman is a tool that installs a hook to your repository to ensure that potential secrets or sensitive information do not leave the developer's workstation. It validates the outgoing changeset for things that look...