35 matches found
EUVD-2018-1929
Malware in sbrugna...
CVE-2025-4809
creationtimestamp| type| source ---|---|--- 2025-05-16 20:35:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16757 2025-05-16 22:37:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpd3r52j5j2j...
CVE-2025-4802
creationtimestamp| type| source ---|---|--- 2025-05-16 19:58:38+00:00| seen| https://seclists.org/oss-sec/2025/q2/159 2025-05-16 20:00:55+00:00| seen| https://infosec.exchange/users/andersonc0d3/statuses/114519287707457625 2025-05-16 20:01:05+00:00| seen|...
CVE-2025-4792
creationtimestamp| type| source ---|---|--- 2025-05-16 17:34:42+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16716...
CVE-2024-30058
creationtimestamp| type| source ---|---|--- 2025-05-16 01:34:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16599...
sibac.info Open Redirect vulnerability OBB-3928369
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Pet Manager <= 1.4 - Contributor+ Stored XSS
Description The plugin does not sanitise and escape some of its Pet settings, which could allow high privilege users such as Contributor to perform Stored Cross-Site Scripting attacks. 1. Go to "Pets Add Pet" 2. In the "Address" field add the payload " style=animation-name:rotation...
Flattr <= 1.2.2 - Admin+ Stored XSS
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup 1. Go to "Flattr" settings 2. In the...
Button contact VR <= 4.7 - Admin+ Stored XSS
Description The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup Click on the "Button contact" and chan...
BlueHat India Call for Papers is Now Open!
You asked for it and it’s finally here! The inaugural BlueHat India conference will be held May 16-17th, 2024, in Hyderabad, India! This intimate conference will bring together a unique blend of security researchers and responders, who come together as peers to exchange ideas, experiences, and...
Affiliate Me 5.0.1 SQL Injection
Exploit Title: Affiliate Me Version 5.0.1 - SQL Injection Exploit Date: May 16, 2023. CVSS 3.1: 6.4 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Tactic: Initial Access TA0001 Technique: Exploit Public-Facing Application T1190 Application Name: Affiliate Me Application Version:...
Affiliate Me Version 5.0.1 - SQL Injection
Exploit Title: Affiliate Me Version 5.0.1 - SQL Injection Exploit Date: May 16, 2023. CVSS 3.1: 6.4 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Tactic: Initial Access TA0001 Technique: Exploit Public-Facing Application T1190 Application Name: Affiliate Me Application Version:...
CVE-2023-2726
creationtimestamp| type| source ---|---|--- 2023-05-16 22:30:37+00:00| seen| https://t.me/cibsecurity/64246...
CVE-2023-32979
creationtimestamp| type| source ---|---|--- 2023-05-16 20:30:37+00:00| seen| https://t.me/cibsecurity/64223...
litec.ca Cross Site Scripting vulnerability OBB-3344953
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
prin-tech.it Cross Site Scripting vulnerability OBB-3344949
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
ceth.bibliossimo.net Cross Site Scripting vulnerability OBB-3341757
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
forextradingbonus.com Cross Site Scripting vulnerability OBB-3341655
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
bonnes-nouvelles.be Cross Site Scripting vulnerability OBB-3341617
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
basisonderwijs.online Cross Site Scripting vulnerability OBB-3341538
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...