CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Kitploit•added 2022/05/21 12:30 p.m.•35 views

Tetanus - Mythic C2 Agent Targeting Linux And Windows Hosts Written In Rust

Tetanus is a Windows and Linux C2 agent written in rust. Installation To install Tetanus, you will need Mythic set up on a machine. In the Mythic root directory, use mythic-cli to install the agent. payload start tetanus" sudo ./mythic-cli install github https://github.com/MythicAgents/tetanus su...

7.9AI score

Exploits0References2

OSV•added 2022/03/28 9:15 p.m.•2 views

CVE-2017-20016

A vulnerability has been found in WEKA INTEREST Security Scanner up to 1.8 and classified as problematic. This vulnerability affects unknown code of the component Portscan. The manipulation with an unknown input leads to denial of service. The attack can be initiated remotely. The exploit has bee...

7.5CVSS4.9AI score

NVD•added 2022/03/28 9:15 p.m.•11 views

CVE-2017-20016

7.5CVSS0.00824EPSS

Prion•added 2022/03/28 9:15 p.m.•12 views

Code injection

UNSUPPORTED WHEN ASSIGNED A vulnerability has been found in WEKA INTEREST Security Scanner up to 1.8 and classified as problematic. This vulnerability affects unknown code of the component Portscan. The manipulation with an unknown input leads to denial of service. The attack can be initiated...

5CVSS7.5AI score0.00824EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2022/03/28 8:46 p.m.•13 views

CVE-2017-20016 WEKA INTEREST Security Scanner Portscan memory allocation

4.3CVSS7AI score0.00824EPSS

Cvelist•added 2022/03/28 8:46 p.m.•12 views

CVE-2017-20016 WEKA INTEREST Security Scanner Portscan memory allocation

4.3CVSS7.6AI score0.00824EPSS

Positive Technologies•added 2022/03/28 12:0 a.m.•2 views

PT-2022-7889 · Unknown · Weka Interest Security Scanner

Name of the Vulnerable Software and Affected Versions: WEKA INTEREST Security Scanner versions up to 1.8 Description: A vulnerability has been found in the Portscan component, which can be exploited to cause a denial of service. The attack can be initiated remotely and the exploit has been...

7.5CVSS7AI score0.00824EPSS

Exploits0References6

CNNVD•added 2022/03/28 12:0 a.m.•2 views

WEKA INTEREST Security Scanner 安全漏洞

WEKA INTEREST Security Scanner is a commonly used software for data exploration by the University of Waikato team in New Zealand. A security vulnerability exists in WEKA INTEREST Security Scanner version 1.8 Portscan, which results in a denial of service when unknown input is used in certain...

7.5CVSS7.3AI score0.00824EPSS

Exploits0References4

Kitploit•added 2020/04/22 12:30 p.m.•43 views

Nullscan - A Modular Framework Designed To Chain And Automate Security Tests

A modular framework designed to chain and automate security tests. It parses target definitions from the command line and runs corresponding modules and their nullscan-tools afterwards. It can also take hosts and start nmap first in order to perform a basic portscan and run the modules afterwards...

7.3AI score

Exploits0References1

n0where•added 2019/02/21 3:15 a.m.•168 views

Post-Exploitation Framework for Linux Written in Bash: Orc

Orc is a simple post-exploitation written in bash. I wrote this because I myself needed a more featureful post-exploitation toolkit for Linux. It’s part of a larger bundle of scripts and tools, but I’ll add those as I write and re-write them. It takes the form of an ENV script, so load orc into a...

7.9AI score

Exploits0References2

Kitploit•added 2019/02/15 12:39 p.m.•697 views

SSRFmap - Automatic SSRF Fuzzer And Exploitation Tool

SSRF are often used to leverage actions on other services, this framework aims to find and exploit these services easily. SSRFmap takes a Burp request file as input and a parameter to fuzz. Server Side Request Forgery or SSRF is a vulnerability in which an attacker forces a server to perform...

7.7AI score

Packet Storm•added 2018/01/31 12:0 a.m.•77 views

Sprecher Automation SPRECON-E-C / PU-2433 Traversal / DoS

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple Vulnerabilities product: Sprecher Automation SPRECON-E-C, PU-2433 vulnerable version: 8.49 most vulnerabilities, see "Vulnerable version" for details fixed...

Vulnerability Lab•added 2017/02/20 12:0 a.m.•52 views

Lithium Forum - (Compose Message) SSRF Vulnerability

Document Title: =============== Lithium Forum - Compose Message SSRF Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2030 Release Date: ============= 2017-02-20 Vulnerability Laboratory ID VL-ID: ==================================== 2030...

Kitploit•added 2016/09/08 2:35 p.m.•34 views

DMitry - Deepmagic Information Gathering Tool

DMitry Deepmagic Information Gathering Tool is a UNIX/GNULinux Command Line Application coded in C language. DMitry has the ability to gather as much information as possible about a host. Base functionality is able to gather possible subdomains, email addresses, uptime information, tcp port scan,...

6.8AI score

n0where•added 2016/07/21 8:42 p.m.•15 views

Deepmagic Information Gathering Tool: DMitry

Deepmagic Information Gathering Tool DMitry Deepmagic Information Gathering Tool is a UNIX/GNU Linux Command Line program coded purely in C with the ability to gather as much information as possible about a host. DMitry has a base functionality with the ability to add new functions, the basic...

6.8AI score

Kitploit•added 2014/08/06 3:12 a.m.•15 views

Web-Fu - Chrome extension for pentesting web applications

Chrome extension for pentesting web applications. Web-fu Is a web hacking tool focused on discovering and exploiting web vulnerabilitites. Is a Browser embedded webhacking tool. Some tools, doesn't support certifiacte auhtentication or web vpn accesses. If the browser can authenticate on the...

7.2AI score

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Rational ClearCase 4.1 Portscan Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6228/info Rational ClearCase has been reported to be prone to a denial of service condition. It is possible to cause this condition by portscanning a system running the vulnerable version of ClearCase. This issue was...

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Cisco AS5350 Universal Gateway Portscan Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6059/info The Cisco AS5350 Universal Gateway is reported to be prone to a denial of service condition. It is possible to cause this condition by portscanning a vulnerable device. This issue was reported for Cisco AS5350...