Lucene search
K

127 matches found

n0where
n0where
added 2018/06/18 7:4 p.m.21 views

Search and Dump System Configuration: otseca

The main assumption of creating this tool was easier and faster delivery of commands sets to be performed on customer environments. As a result of such a scan I wanted to get the most useful information about system components that will be subjected to penetration tests and audits at a later time...

7AI score
Exploits0References1
Kitploit
Kitploit
added 2018/06/01 10:28 p.m.32 views

Otseca - Security Auditing Tool To Search And Dump System Configuration

Otseca is a open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats. For more information, see wiki. How To Use It's simple: Clone this repository git clone https://github.com/trimstray/otseca Go into the repository...

7.3AI score
Exploits0References2
OSV
OSV
added 2018/04/13 4:29 p.m.1 views

UBUNTU-CVE-2017-0368

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw making rawHTML mode apply to system messages...

5.3CVSS6.8AI score0.01525EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.23 views

Fedora 19 : mediawiki-1.23.7-1.fc19 (2014-16020)

http://www.mediawiki.org/wiki/Releasenotes/1.23MediaWiki1.23.7 - bug 66776, bug 71478 SECURITY: User PleaseStand reported a way to inject code into API clients that used format=php to process pages that underwent flash policy mangling. This was fixed along with improving how the mangling was done...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.27 views

Fedora 20 : mediawiki-1.23.7-1.fc20 (2014-16033)

http://www.mediawiki.org/wiki/Releasenotes/1.23MediaWiki1.23.7 - bug 66776, bug 71478 SECURITY: User PleaseStand reported a way to inject code into API clients that used format=php to process pages that underwent flash policy mangling. This was fixed along with improving how the mangling was done...

5.5AI score
Exploits0References2
Mageia
Mageia
added 2014/12/03 7:27 p.m.46 views

Updated mediawiki packages fix security vulnerabilies

In MediaWiki before 1.23.7, a missing CSRF check could allow reflected XSS on wikis that allow raw HTML CVE-2014-9276. MediaWiki's mangling, in MediaWiki before 1.23.7, could allow an article editor to inject code into API consumers that blindly unserialize PHP representations of the page from th...

7.5CVSS9.1AI score0.01965EPSS
Exploits1References3
OSV
OSV
added 2014/06/06 2:55 p.m.2 views

DEBIAN-CVE-2014-3966

Cross-site scripting XSS vulnerability in Special:PasswordReset in MediaWiki before 1.19.16, 1.21.x before 1.21.10, and 1.22.x before 1.22.7, when wgRawHtml is enabled, allows remote attackers to inject arbitrary web script or HTML via an invalid username...

2.6CVSS6AI score0.02097EPSS
Exploits0References1
Rows per page
Query Builder