Lucene search
K

5 matches found

Cvelist
Cvelist
added 2025/07/05 12:0 a.m.9 views

CVE-2023-50786

Dradis through 4.16.0 allows referencing external images resources over HTTPS, instead of forcing the use of embedded uploaded images. This can be leveraged by an authorized author to attempt to steal the Net-NTLM hashes of other authors on a Windows domain network...

4.1CVSS0.00227EPSS
Exploits0References3
OSV
OSV
added 2025/07/05 12:0 a.m.5 views

CVE-2023-50786

Dradis through 4.16.0 allows referencing external images resources over HTTPS, instead of forcing the use of embedded uploaded images. This can be leveraged by an authorized author to attempt to steal the Net-NTLM hashes of other authors on a Windows domain network...

4.1CVSS6.8AI score0.00227EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/11/02 12:0 a.m.6 views

PT-2023-30106

Name of the Vulnerable Software and Affected Versions FireFlow versions prior to A32.20 b570 FireFlow versions prior to A32.50 b390 FireFlow versions prior to A32.60 b220 Description The issue allows an attacker to obtain a victim's domain credentials and Net-NTLM hash via HTML injection in the...

5.9CVSS5.8AI score0.00301EPSS
Exploits0References6
Kitploit
Kitploit
added 2021/06/09 9:30 p.m.285 views

SharpWebServer - HTTP And WebDAV Server With Net-NTLM Hashes Capture Functionality

A Red Team oriented simple HTTP & WebDAV server written in C with functionality to capture Net-NTLM hashes. To be used for serving payloads on compromised machines for lateral movement purposes. Requires .NET Framework 4.5 and System.Net and System.Net.Sockets references. Usage :: SharpWebServer ...

7.5AI score
Exploits0References2
0day.today
0day.today
added 2018/10/06 12:0 a.m.54 views

Claromentis Discuss 1.2.1 Cross Site Scripting Vulnerability

Exploit for php platform in category web applications Issue: Stored Cross site Scripting XSS on Discuss Module v1.2.1 in Claromentis intranet application Reserved CVE: CVE-2018-15903 Vulnerability OverviewThe Discuss v1.2.1 module in Claromentis 8.2.2 is vulnerable to Stored Cross Site Scripting...

0.0069EPSS
Exploits3
Rows per page
Query Builder