35 matches found
EUVD-2018-1929
Malware in sbrugna...
CVE-2025-4809
creationtimestamp| type| source ---|---|--- 2025-05-16 20:35:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16757 2025-05-16 22:37:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpd3r52j5j2j...
CVE-2025-4802
creationtimestamp| type| source ---|---|--- 2025-05-16 19:58:38+00:00| seen| https://seclists.org/oss-sec/2025/q2/159 2025-05-16 20:00:55+00:00| seen| https://infosec.exchange/users/andersonc0d3/statuses/114519287707457625 2025-05-16 20:01:05+00:00| seen|...
CVE-2025-4792
creationtimestamp| type| source ---|---|--- 2025-05-16 17:34:42+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16716...
CVE-2024-30058
creationtimestamp| type| source ---|---|--- 2025-05-16 01:34:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16599...
sibac.info Open Redirect vulnerability OBB-3928369
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Flattr <= 1.2.2 - Admin+ Stored XSS
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup 1. Go to "Flattr" settings 2. In the...
Button contact VR <= 4.7 - Admin+ Stored XSS
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup Click on the "Button contact" and chan...
Pet Manager <= 1.4 - Contributor+ Stored XSS
Description The plugin does not sanitise and escape some of its Pet settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks. 1. Go to "Pets Add Pet" 2. In the "Address" field add the payload " style=animation-name:rotation...
BlueHat India Call for Papers is Now Open!
You asked for it and it’s finally here! The inaugural BlueHat India conference will be held May 16-17th, 2024, in Hyderabad, India! This intimate conference will bring together a unique blend of security researchers and responders, who come together as peers to exchange ideas, experiences, and...
Affiliate Me 5.0.1 SQL Injection
Exploit Title: Affiliate Me Version 5.0.1 - SQL Injection Exploit Date: May 16, 2023. CVSS 3.1: 6.4 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Tactic: Initial Access TA0001 Technique: Exploit Public-Facing Application T1190 Application Name: Affiliate Me Application Version:...
Affiliate Me Version 5.0.1 - SQL Injection
Exploit Title: Affiliate Me Version 5.0.1 - SQL Injection Exploit Date: May 16, 2023. CVSS 3.1: 6.4 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Tactic: Initial Access TA0001 Technique: Exploit Public-Facing Application T1190 Application Name: Affiliate Me Application Version:...
CVE-2023-2726
creationtimestamp| type| source ---|---|--- 2023-05-16 22:30:37+00:00| seen| https://t.me/cibsecurity/64246...
CVE-2023-32979
creationtimestamp| type| source ---|---|--- 2023-05-16 20:30:37+00:00| seen| https://t.me/cibsecurity/64223...
litec.ca Cross Site Scripting vulnerability OBB-3344953
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
prin-tech.it Cross Site Scripting vulnerability OBB-3344949
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
ceth.bibliossimo.net Cross Site Scripting vulnerability OBB-3341757
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
forextradingbonus.com Cross Site Scripting vulnerability OBB-3341655
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bonnes-nouvelles.be Cross Site Scripting vulnerability OBB-3341617
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
basisonderwijs.online Cross Site Scripting vulnerability OBB-3341538
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...