EUVD-2024-52108

Malicious code in bioql PyPI...

Malicious code in raphael.core (npm)

The package raphael.core was found to contain malicious code...

MAL-2025-31625 Malicious code in raphael.core (npm)

The package raphael.core was found to contain malicious code...

LinkJoin 安全漏洞

LinkJoin is a virtual course and meeting software by the individual developer Seth Raphael. A security vulnerability exists in LinkJoin version 882f196 that stems from improper handling of token ownership in the password reset feature...

CVE-2024-53776

Cross-Site Request Forgery CSRF vulnerability in raphaelheide Donate Me donate-me allows Stored XSS.This issue affects Donate Me: from n/a through = 1.2.5...

CVE-2024-53776

Cross-Site Request Forgery CSRF vulnerability in raphaelheide Donate Me donate-me allows Stored XSS.This issue affects Donate Me: from n/a through = 1.2.5...

CVE-2024-53776 WordPress Donate Me plugin <= 1.2.5 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Raphael Heide Donate Me allows Stored XSS.This issue affects Donate Me: from n/a through 1.2.5...

CVE-2024-53776

CVE-2024-53776 is a CSRF to Stored XSS vulnerability in the WordPress plugin Donate Me (versions &lt;= 1.2.5). The issue arises from cross-site request forgery that can trigger stored XSS via Donate Me’s normal operations. Affected product: WordPress Donate Me plugin; affected versions:

raphael-levy.com Improper Access Control vulnerability OBB-3808856

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

AMD SMM Supervisor Vulnerability Security Notice

Bulletin ID: AMD-SB-7011 Potential Impact: Loss of confidentiality, integrity, and availability Severity: High Summary External researchers reported a potential vulnerability during SMM Supervisor initialization which may impact some AMD processors. On systems that do not have Supervisor Mode...

raphael-hotel.com Cross Site Scripting vulnerability OBB-3552759

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Malicious code in visualization-raphael-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 880e10929215a420f57b8d378c3a98fdc1c514607a5c32cc7a19262ed887c6a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6946 Malicious code in visualization-raphael-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 880e10929215a420f57b8d378c3a98fdc1c514607a5c32cc7a19262ed887c6a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

moodle.saint-raphael.be Cross Site Scripting vulnerability OBB-2122371

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

WordPress BBPress 2.5 Privilege Escalation

Exploit Title: Wordpress Plugin BBPress 2.5 - Unauthenticated Privilege Escalation Date: 2020-05-29 Exploit Author: Raphael Karger Software Link: https://codex.bbpress.org/releases/ Version: BBPress 2.5 CVE: CVE-2020-13693 import argparse import requests import bs4 import urllib3...

WordPress bbPress plugin <= 2.6.4 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by Raphael Karger in WordPress bbPress plugin versions = 2.6.4. Solution Update the WordPress bbPress plugin to the latest available version at least 2.6.5...

Wordpress InfiniteWP Client Plugin 1.9.4.5 - Authentication Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass Exploit Author: Raphael Karger Vendor Homepage: https://infinitewp.com/ Version: InfiniteWP Client 1.9.4.5 !/usr/bin/python3 import requests import json import...

WordPress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass

Exploit Title: Wordpress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass Date: 2020-1-16 Exploit Author: Raphael Karger Vendor Homepage: https://infinitewp.com/ Version: InfiniteWP Client 1.9.4.5 !/usr/bin/python3 import requests import json import argparse import base64 import json impo...

Wordpress Ultimate Addons for Beaver Builder 1.2.4.1 - Authentication Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Wordpress Ultimate Addons for Beaver Builder 1.2.4.1 - Authentication Bypass Exploit Authors: Raphael Karger & Nathan Hrncirik Vendor Homepage: https://www.ultimatebeaver.com/ Version: Ultimate Addons for Beaver Builder | || |...

Cobalt Strike. Walkthrough for Red Teamers

What is Cobalt Strike? Raphael Mudge is the creator of Cobalt Strike CS, around 2010 he released a tool titled Armitage, which is described by wikipedia as a graphical cyber-attack management for the Metasploit Project, to put this more bluntly, Armitage is a gui that allows you to easily navigat...