EUVD-2024-52108

Malicious code in bioql PyPI...

MAL-2025-31625 Malicious code in raphael.core (npm)

The package raphael.core was found to contain malicious code...

Malicious code in raphael.core (npm)

The package raphael.core was found to contain malicious code...

LinkJoin 安全漏洞

LinkJoin is a virtual course and meeting software by the individual developer Seth Raphael. A security vulnerability exists in LinkJoin version 882f196 that stems from improper handling of token ownership in the password reset feature...

CVE-2024-53776

Cross-Site Request Forgery CSRF vulnerability in raphaelheide Donate Me donate-me allows Stored XSS.This issue affects Donate Me: from n/a through = 1.2.5...

CVE-2024-53776

Cross-Site Request Forgery CSRF vulnerability in raphaelheide Donate Me donate-me allows Stored XSS.This issue affects Donate Me: from n/a through = 1.2.5...

CVE-2024-53776

CVE-2024-53776 is a CSRF to Stored XSS vulnerability in the WordPress plugin Donate Me (versions <= 1.2.5). The issue arises from cross-site request forgery that can trigger stored XSS via Donate Me’s normal operations. Affected product: WordPress Donate Me plugin; affected versions:

CVE-2024-53776 WordPress Donate Me plugin <= 1.2.5 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Raphael Heide Donate Me allows Stored XSS.This issue affects Donate Me: from n/a through 1.2.5...

raphael-levy.com Improper Access Control vulnerability OBB-3808856

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

AMD SMM Supervisor Vulnerability Security Notice

Bulletin ID: AMD-SB-7011 Potential Impact: Loss of confidentiality, integrity, and availability Severity: High Summary External researchers reported a potential vulnerability during SMM Supervisor initialization which may impact some AMD processors. On systems that do not have Supervisor Mode...

raphael-hotel.com Cross Site Scripting vulnerability OBB-3552759

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Malicious code in visualization-raphael-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 880e10929215a420f57b8d378c3a98fdc1c514607a5c32cc7a19262ed887c6a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6946 Malicious code in visualization-raphael-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 880e10929215a420f57b8d378c3a98fdc1c514607a5c32cc7a19262ed887c6a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

moodle.saint-raphael.be Cross Site Scripting vulnerability OBB-2122371

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

WordPress BBPress 2.5 Privilege Escalation

Exploit Title: Wordpress Plugin BBPress 2.5 - Unauthenticated Privilege Escalation Date: 2020-05-29 Exploit Author: Raphael Karger Software Link: https://codex.bbpress.org/releases/ Version: BBPress 2.5 CVE: CVE-2020-13693 import argparse import requests import bs4 import urllib3...

WordPress bbPress plugin <= 2.6.4 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by Raphael Karger in WordPress bbPress plugin versions = 2.6.4. Solution Update the WordPress bbPress plugin to the latest available version at least 2.6.5...

Wordpress InfiniteWP Client Plugin 1.9.4.5 - Authentication Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass Exploit Author: Raphael Karger Vendor Homepage: https://infinitewp.com/ Version: InfiniteWP Client 1.9.4.5 !/usr/bin/python3 import requests import json import...

WordPress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass

Exploit Title: Wordpress Plugin InfiniteWP Client 1.9.4.5 - Authentication Bypass Date: 2020-1-16 Exploit Author: Raphael Karger Vendor Homepage: https://infinitewp.com/ Version: InfiniteWP Client 1.9.4.5 !/usr/bin/python3 import requests import json import argparse import base64 import json impo...

Wordpress Ultimate Addons for Beaver Builder 1.2.4.1 - Authentication Bypass Exploit

Exploit for php platform in category web applications Exploit Title: Wordpress Ultimate Addons for Beaver Builder 1.2.4.1 - Authentication Bypass Exploit Authors: Raphael Karger & Nathan Hrncirik Vendor Homepage: https://www.ultimatebeaver.com/ Version: Ultimate Addons for Beaver Builder | || |...

Cobalt Strike. Walkthrough for Red Teamers

What is Cobalt Strike? Raphael Mudge is the creator of Cobalt Strike CS, around 2010 he released a tool titled Armitage, which is described by wikipedia as a graphical cyber-attack management for the Metasploit Project, to put this more bluntly, Armitage is a gui that allows you to easily navigat...