Lucene search
+L

16 matches found

osv
osv
added 2025/11/14 2:45 p.m.22 views

HSEC-2023-0010 git-annex private data exfiltration to compromised remote

git-annex private data exfiltration to compromised remote Some uses of git-annex were vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN. Joey He...

7.5CVSS7.4AI score0.01539EPSS
Exploits0References1
susecve
susecve
added 2023/02/15 4:28 a.m.6 views

SUSE CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS9.3AI score0.01539EPSS
Exploits0References6
redhatcve
redhatcve
added 2022/05/20 10:39 p.m.30 views

CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS1.9AI score0.01539EPSS
Exploits0References1
schneier
schneier
added 2022/01/06 12:29 p.m.12 views

People Are Increasingly Choosing Private Web Search

DuckDuckGo has had a banner year: And yet, DuckDuckGo. The privacy-oriented search engine netted more than 35 billion search queries in 2021, a 46.4% jump over 2020 23.6 billion. Thats big. Even so, the company, which bills itself as the "Internet privacy company," offering a search engine and...

1.1AI score
Exploits0
cnvd
cnvd
added 2018/07/17 12:0 a.m.6 views

git-annex information disclosure vulnerability

git-annex is a distributed file synchronization system written in Haskell. A private data information disclosure vulnerability exists in git-annex. An attacker can exploit this vulnerability to obtain the contents of files outside of the git-annex repository and the contents of a private web serv...

7.5CVSS6.2AI score0.01539EPSS
Exploits0References1
prion
prion
added 2018/07/16 8:29 p.m.17 views

Code injection

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

5CVSS7.4AI score0.01539EPSS
Exploits0References2Affected Software1
ubuntucve
ubuntucve
added 2018/07/16 8:29 p.m.26 views

CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS6.8AI score0.01539EPSS
Exploits0References3
osv
osv
added 2018/07/16 8:29 p.m.5 views

DEBIAN-CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS6.8AI score0.01539EPSS
Exploits0References1
debiancve
debiancve
added 2018/07/16 8:0 p.m.69 views

CVE-2018-10857

git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN...

7.5CVSS6.6AI score0.01539EPSS
Exploits0
ptsecurity
ptsecurity
added 2018/07/06 12:0 a.m.4 views

PT-2018-10145

Name of the Vulnerable Software and Affected Versions git-annex affected versions not specified Description The issue concerns a private data exposure and exfiltration attack in git-annex. It could expose the content of files located outside the git-annex repository or content from a private web...

10CVSS8AI score0.77823EPSS
Exploits12References46
n0where
n0where
added 2018/01/01 8:31 p.m.75 views

Fsociety Hacking Tools Pack

Fsociety Menu Information Gathering Password Attacks Wireless Testing Exploitation Tools Sniffing & Spoofing Web Hacking Private Web Hacking Post Exploitation INSTALL & UPDATE Information Gathering : Nmap Setoolkit Port Scanning Host To IP wordpress user CMS scanner XSStracer Dork – Google Dorks...

0.1AI score
Exploits0References1
kitploit
kitploit
added 2017/12/29 9:33 p.m.176 views

Fsociety Hacking Tools Pack - A Penetration Testing Framework

A Penetration Testing Framework , you will have evry script that a hacker needs Menu Information Gathering Password Attacks Wireless Testing Exploitation Tools Sniffing & Spoofing Web Hacking Private Web Hacking Post Exploitation INSTALL & UPDATE InformationGathering : Nmap Setoolkit Port Scannin...

7.8AI score
Exploits0References3
thn
thn
added 2012/05/31 5:42 a.m.7 views

What is the Deep Web? A first trip into the abyss

The Deep Web or Invisible web is the set of information resources on the World Wide Web not reported by normal search engines. According several researches the principal search engines index only a small portion of the overall web content, the remaining part is unknown to the majority of web user...

6.6AI score
Exploits0
threatpost
threatpost
added 2009/11/10 9:32 p.m.9 views

Chaminade University Exposed Student SSNs

Human error is to blame for the accidental exposure last week of more than 4,500 Chaminade University student’s Social Security numbers on the private Catholic college’s official Web site. University officials discovered the snafu Wednesday and quickly removed the obscure but accessible links fro...

2.2AI score
Exploits0References2
prion
prion
added 2007/05/22 7:30 p.m.21 views

Authentication flaw

The "hit-highlighting" functionality in webhits.dll in Microsoft Internet Information Services IIS Web Server 5.0 only uses Windows NT ACL configuration, which allows remote attackers to bypass NTLM and basic authentication mechanisms and access private web directories via the CiWebhitsfile...

10CVSS7AI score0.71905EPSS
Exploits6References5Affected Software1
nvd
nvd
added 2007/05/22 7:30 p.m.19 views

CVE-2007-2815

The "hit-highlighting" functionality in webhits.dll in Microsoft Internet Information Services IIS Web Server 5.0 only uses Windows NT ACL configuration, which allows remote attackers to bypass NTLM and basic authentication mechanisms and access private web directories via the CiWebhitsfile...

10CVSS6.8AI score0.71905EPSS
Exploits6References5
Rows per page
Query Builder