Lucene search
K

7082 matches found

Kitploit
Kitploit
added 2020/09/13 11:30 a.m.52 views

HTTP-revshell - Powershell Reverse Shell Using HTTP/S Protocol With AMSI Bypass And Proxy Aware

HTTP-revshell is a tool focused on redteam exercises and pentesters. This tool provides a reverse connection through the http/s protocol. It use a covert channel to gain control over the victim machine through web requests and thus evade solutions such as IDS, IPS and AV. Help server.py unisessio...

7.3AI score
Exploits0References3
Gitee
Gitee
added 2020/09/11 3:8 p.m.5 views

Exploit for CVE-2015-1538

PoC exploit for CVE-2015-1538-1, Google Stagefright ‘stsc’ MP4 Atom Integer Overflow Remote Code Execution. The target product/service is Google Stagefright, a media library for Android. The vulnerability class/vector is Integer Overflow in the libstagefright MP4 'stsc' atom handling, leading to...

10CVSS7.6AI score0.99064EPSS
Exploits6
HackRead
HackRead
added 2020/09/08 8:3 p.m.16 views

Programmer Hacks Pregnancy Test to Play Doom

By Waqas A hardware and software reverse engineer managed to run Doom's fully functional game on a pregnancy test. This is a post from HackRead.com Read the original post: Programmer Hacks Pregnancy Test to Play Doom...

2.3AI score
Exploits0
RedHat Linux
RedHat Linux
added 2020/09/08 10:5 a.m.4 views

golang: data race in certain net/http servers including ReverseProxy can lead to DoS

A flaw was found Go's net/http package. Servers using ReverseProxy from net/http in the Go standard library are vulnerable to a data race that results in a denial of service. The highest threat from this vulnerability is to system availability...

5.9CVSS7.3AI score0.02893EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2020/09/04 2:58 p.m.13 views

Malicious Package in sj-labc

All versions of sj-labc contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

3.7AI score
Exploits0References2Affected Software1
CNVD
CNVD
added 2020/09/04 12:0 a.m.7 views

Mofi Network MOFI4500-4GXeLTE Security Feature Issue Vulnerability

The Mofi Network MOFI4500-4GXeLTE is a wireless router from Mofi Network. A security vulnerability exists in the Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices, which can be exploited by an attacker to know the generation algorithm via firmware reverse, and directly calculate the one-time passwo...

7.5CVSS7AI score0.01081EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 11:28 p.m.32 views

Malicious Package in superhappyfuntime

All versions of superhappyfuntime contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

3AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 11:28 p.m.10 views

GHSA-6QGX-F452-7699 Malicious Package in superhappyfuntime

All versions of superhappyfuntime contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

9.8CVSS7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 11:27 p.m.25 views

Malicious Package in arsenic-tabasco-cyborg-peanut-butter

All versions of arsenic-tabasco-cyborg-peanut-butter contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored...

3.7AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 11:27 p.m.9 views

GHSA-R742-7J4H-HJR8 Malicious Package in arsenic-tabasco-cyborg-peanut-butter

All versions of arsenic-tabasco-cyborg-peanut-butter contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored...

9.8CVSS7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 11:26 p.m.27 views

Malicious Package in sj-tw-abc

All versions of sj-tw-abc contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

3.7AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 11:26 p.m.8 views

GHSA-4HFC-FV33-PH9P Malicious Package in sj-tw-abc

All versions of sj-tw-abc contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

9.8CVSS7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 11:25 p.m.26 views

Malicious Package in sj-tw-sec

All versions of sj-tw-sec contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

3.7AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 11:25 p.m.9 views

GHSA-692H-G37C-QV44 Malicious Package in sj-tw-sec

All versions of sj-tw-sec contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

9.8CVSS7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 11:24 p.m.28 views

Malicious Package in sj-tw-test-security

All versions of sj-tw-test-security contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

3.7AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 11:24 p.m.7 views

GHSA-RCV7-4W2M-GJ9V Malicious Package in sj-tw-test-security

All versions of sj-tw-test-security contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer...

9.8CVSS7AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2020/09/03 11:23 p.m.25 views

Malicious Package in owl-orchard-apple-sunshine

All versions of owl-orchard-apple-sunshine contain malicious code. The package downloads and runs a script that opens a reverse shell in the system. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...

3.7AI score
Exploits0References2Affected Software1
OSV
OSV
added 2020/09/03 11:21 p.m.1 views

GHSA-H6MQ-3CJ6-H738 Reverse Tabnabbing in showdown

Versions of showdown prior to 1.9.1 are vulnerable to Reverse Tabnabbing. The package uses target='blank' in anchor tags, allowing attackers to access window.opener for the original page when opening links. This is commonly used for phishing attacks. Recommendation Upgrade to version 1.9.1 or lat...

3.1CVSS5.9AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2020/09/03 11:21 p.m.30 views

Reverse Tabnabbing in showdown

Versions of showdown prior to 1.9.1 are vulnerable to Reverse Tabnabbing. The package uses target='blank' in anchor tags, allowing attackers to access window.opener for the original page when opening links. This is commonly used for phishing attacks. Recommendation Upgrade to version 1.9.1 or lat...

4.9AI score
Exploits0References5Affected Software1
OSV
OSV
added 2020/09/03 5:19 p.m.3 views

GHSA-588M-9QG5-35PQ Reverse Tabnabbing in quill

Versions of quill prior to 1.3.7 are vulnerable to Reverse Tabnabbing. The package uses target='blank' in anchor tags, allowing attackers to access window.opener for the original page when opening links. This is commonly used for phishing attacks. Recommendation No fix is currently available...

6.5CVSS5.9AI score
Exploits0References4
Rows per page
Query Builder