Lucene search
K

13 matches found

NVD
NVD
added 2026/04/01 2:16 p.m.5 views

CVE-2026-0522

A local file inclusion vulnerability in the upload/download flow of the VertiGIS FM application allows authenticated attackers to read arbitrary files from the server by manipulating a file's path during its upload. When the file is subsequently downloaded, the file in the attacker controlled pat...

8.8CVSS0.00608EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-51409

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01118EPSS
Exploits0References1
NVD
NVD
added 2023/11/30 11:15 p.m.13 views

CVE-2023-47279

In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying...

7.5CVSS0.01118EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 11:15 p.m.15 views

Design/Logic Flaw

In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying...

5CVSS6.8AI score0.01118EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/30 10:12 p.m.10 views

CVE-2023-47279 Delta Electronics InfraSuite Device Master Path Traversal

In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying...

7.5CVSS7.4AI score0.01118EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 10:12 p.m.63 views

CVE-2023-47279

Delta Electronics InfraSuite Device Master (version 1.0.7) is affected by CVE-2023-47279, a path traversal-related vulnerability permitting an unauthenticated attacker to disclose user information, obtain plaintext credentials, or perform NTLM relaying through a single UDP packet. This vulnerabil...

7.5CVSS7.5AI score0.01118EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/30 10:12 p.m.19 views

CVE-2023-47279 Delta Electronics InfraSuite Device Master Path Traversal

In Delta Electronics InfraSuite Device Master v.1.0.7, A vulnerability exists that allows an unauthenticated attacker to disclose user information through a single UDP packet, obtain plaintext credentials, or perform NTLM relaying...

7.5CVSS7.6AI score0.01118EPSS
Exploits0References1
Kitploit
Kitploit
added 2022/12/15 11:30 a.m.21 views

ADFSRelay - Proof Of Concept Utilities Developed To Research NTLM Relaying Attacks Targeting ADFS

This repository includes two utilities NTLMParse and ADFSRelay. NTLMParse is a utility for decoding base64-encoded NTLM messages and printing information about the underlying properties and fields within the message. Examining these NTLM messages is helpful when researching the behavior of a...

6.9AI score
Exploits0References1
Kitploit
Kitploit
added 2022/01/02 8:30 p.m.30 views

Lsarelayx - NTLM Relaying For Windows Made Easy

lsarelayx is system wide NTLM relay tool designed to relay incoming NTLM based authentication to the host it is running on. lsarelayx will relay any incoming authentication request which includes SMB. Since lsarelayx hooks into existing application authentication flows, the tool will also attempt...

7.3AI score
Exploits0References3
Penetration Testing Lab
Penetration Testing Lab
added 2021/05/04 7:27 a.m.18 views

Remote Potato – From Domain User to Enterprise Admin

NTLM Relaying is an well-known technique that was mainly used in security assessments in order to establish some sort of foothold on a server in… Continue reading - Remote Potato - From Domain User to Enterprise Admin...

1.8AI score
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2021/05/04 7:27 a.m.54 views

Remote Potato – From Domain User to Enterprise Admin

NTLM Relaying is an well-known technique that was mainly used in security assessments in order to establish some sort of foothold on a server in… Continue reading - Remote Potato - From Domain User to Enterprise Admin...

1.8AI score
Exploits0
securityvulns
securityvulns
added 2009/04/20 12:0 a.m.49 views

Microsoft Internet Explorer multiple security vulnerabilities

Code exexuction, multiple memory corruptions, NTLM relaying...

9.3CVSS2.2AI score0.46936EPSS
Exploits10References3
securityvulns
securityvulns
added 2009/04/14 12:0 a.m.162 views

Microsoft Windows WinHTTP servive multiple security vulnerabilities

Integer overflow, certificate spoofing, NTLM relaying...

10CVSS2.1AI score0.1415EPSS
Exploits7References1
Rows per page
Query Builder