17 matches found
EUVD-2024-52432
Malicious code in bioql PyPI...
EUVD-2025-28697
Malicious code in bioql PyPI...
CVE-2025-5963
The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library Dylib injection. A local attacker with unprivileged access can use environmen...
CVE-2025-5963
The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library Dylib injection. A local attacker with unprivileged access can use environmen...
CVE-2025-5963 TCC Bypass via Dylib Injection in Postbox
The Postbox's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library Dylib injection. A local attacker with unprivileged access can use environmen...
CVE-2025-5963
The CVE-2025-5963 issue affects Postbox on macOS. The vulnerability arises from specific entitlements (com.apple.security.cs.allow-dyld-environment-variables and com.apple.security.cs.disable-library-validation) that enable Dynamic Library (Dylib) injection via environment variables (e.g., DYLD_I...
PT-2025-26298 · Postbox · Postbox
Name of the Vulnerable Software and Affected Versions: Postbox versions affected versions not specified Description: The Postbox's configuration on macOS allows for Dynamic Library Dylib injection due to the presence of certain entitlements. A local attacker with unprivileged access can use...
Postbox 安全漏洞
Postbox is an email client software from Postbox, Inc. A security vulnerability exists in Postbox that stems from allowing dynamic library injection, which could lead to a local attacker bypassing TCC...
CVE-2024-54309
Insertion of Sensitive Information Into Sent Data vulnerability in wpdebuglog PostBox postbox-email-logs allows Retrieve Embedded Sensitive Data.This issue affects PostBox: from n/a through = 1.0.4...
CVE-2024-54309
Insertion of Sensitive Information Into Sent Data vulnerability in wpdebuglog PostBox postbox-email-logs allows Retrieve Embedded Sensitive Data.This issue affects PostBox: from n/a through = 1.0.4...
CVE-2024-54309 WordPress PostBox plugin <= 1.0.4 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in wpdebuglog PostBox postbox-email-logs allows Retrieve Embedded Sensitive Data.This issue affects PostBox: from n/a through = 1.0.4...
CVE-2024-54309 WordPress PostBox plugin <= 1.0.4 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in wpdebuglog PostBox postbox-email-logs allows Retrieve Embedded Sensitive Data.This issue affects PostBox: from n/a through = 1.0.4...
CVE-2024-54309
CVE-2024-54309 is a WordPress WordPress Email Log – PostBox vulnerability involving the PostBox module where missing authorization allows authenticated subscribers to export logs. The Red Hat entry and Wordfence vulnerability list corroborate that the issue is a log-export authorization bypass in...
PT-2024-36190 · Postbox · Postbox
Name of the Vulnerable Software and Affected Versions: PostBox versions 1.0.4 and earlier Description: The issue allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent data. This is related to the wpdebuglog PostBox. Recommendations: For PostBox...
WordPress plugin PostBox 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
WordPress PostBox plugin <= 1.0.4 - Sensitive Data Exposure vulnerability
Sensitive Data Exposure vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin PostBox versions = 1.0.4...
Postbox Credential Gatherer
This module searches for Postbox credentials on a Windows host. Module Options msf use post/windows/gather/credentials/postbox msf postpostbox show actions ...actions... msf postpostbox set ACTION msf postpostbox show options ...show and set options... msf postpostbox run This module requires...