EUVD-2020-5613

Malware in sbrugna...

Microsoft VP9 Video Extensions (Windows SMB Login)

SMB login-based detection of Microsoft VP9 Video Extensions. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Paint 3D (Windows SMB Login)

SMB login-based detection of Microsoft Paint 3D SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

LibreOffice Improper Validation of Array Index vulnerability (May 2025) - Windows

LibreOffice is prone to an improper validation of array index vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

GO-2023-2135 Artifact Hub has Incorrect Docker Hub registry check in github.com/artifacthub/hub

Artifact Hub has Incorrect Docker Hub registry check in github.com/artifacthub/hub...

CVE-2023-45821 Incorrect Docker Hub registry check in Artifact Hub

Artifact Hub is a web-based application that enables finding, installing, and publishing packages and configurations for CNCF projects. During a security audit of Artifact Hub's code base a security researcher identified a bug in which the registryIsDockerHub function was only checking that the...

GHSA-G6PQ-X539-7W4J Artifact Hub has Incorrect Docker Hub registry check

Impact During a security audit of Artifact Hub's code base, a security researcher at OffSec identified a bug in which the registryIsDockerHub function was only checking that the registry domain had the docker.io suffix. Artifact Hub allows providing some Docker credentials that are used to increa...

PT-2023-29710 · Unknown · Artifact Hub

Name of the Vulnerable Software and Affected Versions: Artifact Hub versions prior to 1.16.0 Description: A security issue was identified in Artifact Hub's code base where the registryIsDockerHub function only checked if the registry domain had the docker.io suffix. This allowed for the potential...

PT-2022-25953 · WordPress · Contest Gallery Pro +1

Name of the Vulnerable Software and Affected Versions: Contest Gallery WordPress plugin versions prior to 19.1.5.1 Contest Gallery Pro WordPress plugin versions prior to 19.1.5.1 Description: The issue arises from the failure to escape the cg Fields POST parameter before it is concatenated to an...

Metasploit Wrap-Up

MobileIron MDM Hessian-Based Java Deserialization RCE Our very own wvu-r7 has added exploits/linux/http/mobileironmdmhessianrce, which exploits an ACL bypass in MobileIron MDM products to execute a Java deserialization attack using a Groovy gadget against a Hessian based endpoint. CVE-2020-15505...

FannyBMP or DementiaWheel Detection Registry Check

This module searches for the Fanny.bmp worm related reg keys. fannybmp is a worm that exploited zero day vulns more specifically, the LNK Exploit CVE-2010-2568. Which allowed it to spread even if USB Autorun was turned off. This is the same exploit that was used in StuxNet. Module Options msf use...

CVE-2016-7266

CVE-2016-7266 affects multiple Microsoft Office/Excel variants (Windows: Excel 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016; macOS: Excel 2016) and the Office Compatibility Pack, Excel Viewer, and Excel for Mac. The root cause is mishandling of a registry check when running embedded content, d...

HP Intelligent Management Center (iMC) Detection (Windows SMB Login)

Detects the installed version of HP Intelligent Management Center iMC. The script logs in via smb, searches for SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Windows Registry Check

Checks the presens of specified registry keys and values on Windows. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

eEye Retina Network Security Scanner Detection

Retina Network Security Scanner is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid39807; scriptversion"1.13"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/02/06"; scriptnameenglish:"eEye Retina Network Security Scann...

Against three stunt--talking about the Trojans of“the search, blocking, kill”-bug warning-the black bar safety net

RFC1244Request for Comments:1 2 4 4is this description of the Trojan:“the Trojan horse is a program, it can provide some useful, or just interesting features. But it is also the user did not know the other functions, such as in your ignorance of the case copy the file or steal your password.” Wit...