Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

The Hacker News
The Hacker Newsadded 2025/03/07 2:15 p.m.31 views

FIN7, FIN8, and Others Use Ragnar Loader for Persistent Access and Ransomware Operations

Threat hunters have shed light on a "sophisticated and evolving malware toolkit" called Ragnar Loader that's used by various cybercrime and ransomware groups like Ragnar Locker aka Monstrous Mantis, FIN7, FIN8, and Ruthless Mantis ex-REvil. "Ragnar Loader plays a key role in keeping access to...

7.8AI score
Exploits0
Microsoft KB
Microsoft KBadded 2023/11/14 8:0 a.m.390 views

Description of the security update for Microsoft Exchange Server 2016: November 14, 2023 (KB5032147)

Description of the security update for Microsoft Exchange Server 2016: November 14, 2023 KB5032147 Notice See also KB 5032146 for additional information about issues that are fixed in this security update. This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn...

8CVSS7.3AI score0.04094EPSS
Exploits0
Metasploit
Metasploitadded 2023/10/04 7:50 p.m.405 views

Progress Software WS_FTP Unauthenticated Remote Code Execution

This module exploits an unsafe .NET deserialization vulnerability to achieve unauthenticated remote code execution against a vulnerable WSFTP server running the Ad Hoc Transfer module. All versions of WSFTP Server prior to 2020.0.4 version 8.7.4 and 2022.0.2 version 8.8.2 are vulnerable to this...

10CVSS9AI score0.94436EPSS
Exploits5
CISA KEV Catalog
CISA KEV Catalogadded 2022/04/13 12:0 a.m.12 views

Kaseya VSA Remote Code Execution Vulnerability

Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices...

9.8CVSS7.4AI score0.47933EPSS
In wildExploits1
Kitploit
Kitploitadded 2021/11/05 11:30 a.m.499 views

PyRDP - RDP Monster-In-The-Middle (Mitm) And Library For Python With The Ability To Watch Connections Live Or After The Fact

PyRDP is a Python Remote Desktop Protocol RDP Monster-in-the-Middle MITM tool and library. It features a few tools: RDP Monster-in-the-Middle Logs credentials used when connecting Steals data copied to the clipboard Saves a copy of the files transferred over the network Crawls shared drives in th...

7.4AI score
Exploits0References17
GithubExploit
GithubExploitadded 2020/01/13 7:33 p.m.0 views

muddyc3-Revived

This is a working POC the leaked MuddyC3 C2 . its include below...

7.2AI score
Exploits0
CVE
CVEadded 2019/02/05 5:0 a.m.971 views

CVE-2018-20753

Summary : CVE-2018-20753 affects Kaseya VSA RMM on-premises. Vulnerable versions : RMM before 9.3.0.35, before 9.4.0.36, and before 9.5.0.5. Impact : unprivileged remote attackers can execute PowerShell payloads on all managed devices. Exploitation note : attackers were active in the wild in Janu...

9.8CVSS9.5AI score0.47933EPSS
In wildExploits1References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2019/02/05 12:0 a.m.14 views

CVE-2018-20753

Kaseya VSA RMM before R9.3 9.3.0.35, R9.4 before 9.4.0.36, and R9.5 before 9.5.0.5 allows unprivileged remote attackers to execute PowerShell payloads on all managed devices. In January 2018, attackers actively exploited this vulnerability in the wild. Recent assessments: Assessed Attacker Value:...

9.8CVSS6.6AI score0.47933EPSS
In wildExploits1References3
VulnCheck KEV
VulnCheck KEVadded 2018/01/30 12:0 a.m.0 views

VulnCheck KEV: CVE-2018-20753

Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices...

9.8CVSS7.4AI score0.47933EPSS
Exploits1References1
Rows per page
Query Builder