Lucene search
K

76 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.1 views

Malicious code in @zalastax/nolb-ngs (npm)

The package @zalastax/nolb-ngs was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-12520 Malicious code in @zalastax/nolb-ngs (npm)

The package @zalastax/nolb-ngs was found to contain malicious code...

7.2AI score
Exploits0
NVD
NVD
added 2024/01/11 3:15 a.m.14 views

CVE-2022-40361

Cross Site Scripting Vulnerability in Elite CRM v1.2.11 allows attacker to execute arbitrary code via the language parameter to the /ngs/login endpoint...

6.1CVSS6.4AI score0.00385EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/11 12:0 a.m.10 views

CVE-2022-40361

Cross Site Scripting Vulnerability in Elite CRM v1.2.11 allows attacker to execute arbitrary code via the language parameter to the /ngs/login endpoint...

7.3AI score0.00385EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.4 views

Elite CRM 跨站脚本漏洞

Elite CRM is a customer relationship management system. A cross-site scripting vulnerability exists in Elite CRM v1.2.11, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited by an attacker to execute arbitrary code via the langua...

6.1CVSS6.9AI score0.00385EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/01/11 12:0 a.m.19 views

CVE-2022-40361

Cross Site Scripting Vulnerability in Elite CRM v1.2.11 allows attacker to execute arbitrary code via the language parameter to the /ngs/login endpoint...

6.6AI score0.00385EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2022/06/06 11:58 a.m.41 views

CISA Warned About Critical Vulnerabilities in Illumina's DNA Sequencing Devices

The U.S. Cybersecurity and Infrastructure Security Agency CISA and Food and Drug Administration FDA have issued an advisory about critical security vulnerabilities in Illumina's next-generation sequencing NGS software. Three of the flaws are rated 10 out of 10 for severity on the Common...

4.2AI score0.01633EPSS
Exploits0
ThreatPost
ThreatPost
added 2018/03/16 11:26 a.m.15 views

The ‘Perfect Storm’ of Disinformation and Hacking

We live in an age of fake news, misinformation and disinformation. Recently, we have been falling for it – mostly. That is largely thanks to a confluence of social media, hacking and good old fashion disinformation campaigns, according to Matt “Pwn all the Things” Tait, a senior cybersecurity...

0.5AI score
Exploits0References1
Openbugbounty
Openbugbounty
added 2015/01/11 10:32 a.m.17 views

ngs-lebach.de Open Redirect vulnerability

Open Bug Bounty ID: OBB-53356 Description| Value ---|--- Affected Website:| ngs-lebach.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2012/12/09 12:0 a.m.52 views

NGS000196 Technical Advisory: Nagios XI Network Monitor OS Command Injection

======= Summary ======= Name: Nagios XI Network Monitor - OS Command Injection Release Date: 30 November 2012 Reference: NGS00196 Discoverer: Daniel Compton [email protected] Vendor: Nagios Vendor Reference: 0000283 Systems Affected: Nagios XI Network Monitor 2011R1.9 Risk: High Status...

7.7AI score
Exploits0
Packet Storm
Packet Storm
added 2012/11/30 12:0 a.m.30 views

Nagios XI Network Monitor 2011R1.9 OS Command Injection

======= Summary ======= Name: Nagios XI Network Monitor - OS Command Injection Release Date: 30 November 2012 Reference: NGS00196 Discoverer: Daniel Compton Vendor: Nagios Vendor Reference: 0000283 Systems Affected: Nagios XI Network Monitor 2011R1.9 Risk: High Status: Published ======== TimeLine...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/02 12:0 a.m.25 views

Websense (Triton 7.6) Authentication Bypass

======= Summary ======= Name: Websense Triton 7.6 Authentication-bypass in report management UI Release Date: 30 April 2012 Reference: NGS00138 Discoverer: Ben Williams Vendor: Websense Vendor Reference: Systems Affected: Risk: High Status: Published ======== TimeLine ======== Discovered: 25...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/02 12:0 a.m.28 views

Symantec pcAnywhere Insecure File Permissions / Privilege Escalation

======= Summary ======= Name: Symantec pcAnywhere insecure file permissions local privilege escalation Release Date: 30 April 2012 Reference: NGS00117 Discoverer: Edward Torkington Vendor: Symantec Vendor Reference: Systems Affected: Symantec pcAnywhere 12.5.x IT Management Suite 7.0 pcAnywhere...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/02 12:0 a.m.19 views

Websense (Triton 7.6) Stored Cross Site Scripting

======= Summary ======= Name: Websense Triton 7.6 stored XSS in report management UI Release Date: 30 April 2012 Reference: NGS00141 Discoverer: Ben Williams Vendor: Websense Vendor Reference: Systems Affected: Risk: High Status: Published ======== TimeLine ======== Discovered: 2 November 2011...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2012/05/01 12:0 a.m.73 views

NGS00138 Technical Advisory: Websense Triton 7.6 - authentication bypass in report management UI

======= Summary ======= Name: Websense Triton 7.6 Authentication-bypass in report management UI Release Date: 30 April 2012 Reference: NGS00138 Discoverer: Ben Williams [email protected] Vendor: Websense Vendor Reference: Systems Affected: Risk: High Status: Published ======== TimeLine...

7AI score
Exploits0
securityvulns
securityvulns
added 2012/05/01 12:0 a.m.49 views

NGS00117 Technical Advisory: Symantec pcAnywhere insecure file permissions local privilege escalation

======= Summary ======= Name: Symantec pcAnywhere insecure file permissions local privilege escalation Release Date: 30 April 2012 Reference: NGS00117 Discoverer: Edward Torkington [email protected] Vendor: Symantec Vendor Reference: Systems Affected: Symantec pcAnywhere 12.5.x IT...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2012/05/01 12:0 a.m.61 views

NGS00107 Patch Notification: Oracle Grid Engine sgepasswd Buffer Overflow

High Risk Vulnerability Oracle Grid Engine 30 April 2012 Edward Torkington of NGS Secure has discovered a High risk vulnerability in Oracle Grid Engine Impact: sgepasswd Buffer Overflow Versions affected: version 62u7 This has been addresses as part of oracle April update:...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2012/04/02 12:0 a.m.76 views

NGS00154 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Session hijacking and bypassing client-side session timeouts

Medium Risk Vulnerability in McAfee Email and Web Security Appliance 29 March 2012 Ben Williams of NGS Secure has discovered a medium risk vulnerability in the McAfee Email and Web Security Appliance Impact: Session hijacking and bypassing client-side session timeouts Versions affected: All...

0.9AI score
Exploits0
securityvulns
securityvulns
added 2012/04/02 12:0 a.m.41 views

NGS00153 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Reflective XSS allowing an attacker to gain session tokens

High Risk Vulnerability in McAfee Email and Web Security Appliance 29 March 2012 Ben Williams of NGS Secure has discovered a high risk vulnerability in the McAfee Email and Web Security Appliance Impact: Reflective XSS allowing an attacker to gain session tokens Versions affected: All versions...

1.7AI score
Exploits0
securityvulns
securityvulns
added 2012/04/02 12:0 a.m.41 views

NGS00155 Patch Notification: McAfee Email and Web Security Appliance v5.6 - Any logged-in user can bypass controls to reset passwords of other administrators

High Risk Vulnerability in McAfee Email and Web Security Appliance 29 March 2012 Ben Williams of NGS Secure has discovered a high risk vulnerability in the McAfee Email and Web Security Appliance Impact: Any logged-in user can bypass controls to reset passwords of other administrators If role-bas...

0.3AI score
Exploits0
Rows per page
Query Builder