Lucene search
+L

165 matches found

Openbugbounty
Openbugbounty
added 2023/03/23 7:7 p.m.12 views

scotttruemd.com Cross Site Scripting vulnerability OBB-3230834

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

5.9AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/11/01 12:0 a.m.9 views

Cracking the code in the boardroom

Former FBI Special Agent, Scott Augenbaum talks about how CISOs can successfully communicate with the board to implement more preventative protection...

7AI score
Exploits0
CNNVD
CNNVD
added 2021/03/05 12:0 a.m.6 views

IdentityModel 安全漏洞

Scott Brady IdentityModel is a Scott Brady open source application. A library of helper programs for tokens and encryption. A security vulnerability exists in IdentityModel before 1.3.0, which can be exploited by an attacker to modify and forge authentication tokens...

7.5CVSS7.4AI score0.01532EPSS
Exploits0References3
Openbugbounty
Openbugbounty
added 2020/10/11 11:12 p.m.5 views

rannochscott.co.uk Cross Site Scripting vulnerability OBB-1398814

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
OSV
OSV
added 2020/09/01 6:46 p.m.10 views

GHSA-JP46-FW6C-3PM9 Directory Traversal in scott-blanch-weather-app

Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

7.5CVSS7.4AI score0.02005EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2020/09/01 6:46 p.m.33 views

Directory Traversal in scott-blanch-weather-app

Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

7.5CVSS7.1AI score0.02005EPSS
Exploits1References4Affected Software1
Krebs on Security
Krebs on Security
added 2020/03/23 8:17 p.m.51 views

Who’s Behind the ‘Web Listings’ Mail Scam?

In December 2018, KrebsOnSecurity looked at how dozens of U.S. political campaigns, cities and towns had paid a shady company called Web Listings Inc. after receiving what looked like a bill for search engine optimization SEO services rendered on behalf of their domain names. The story concluded...

6.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2020/02/10 7:8 p.m.35 views

Top 5 Reasons to Attend Qualys Security Conference 2020 San Francisco

Are you interested in exploring the profound impact of digital transformation on the security industry, and how that impact affects practitioners? Are you planning to be in San Francisco during RSA Conference week? If yes, join us at Qualys Security Conference 2020 San Francisco on February 25!...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/02/10 7:27 a.m.10 views

scottmcguire.ca Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1088888 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

6.2AI score
Exploits0
Veracode
Veracode
added 2019/05/02 5:39 a.m.50 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

9.3CVSS8.6AI score0.07417EPSS
Exploits0References8Affected Software1
Veracode
Veracode
added 2019/05/02 5:39 a.m.41 views

Arbitrary Code Execution

Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...

7.5CVSS8.6AI score0.07417EPSS
Exploits0References21Affected Software2
CNVD
CNVD
added 2018/06/21 12:0 a.m.3 views

scott-blanch-weather-app path traversal vulnerability

scott-blanch-weather-app is a Node.js weather app built with Express. A path traversal vulnerability exists in scott-blanch-weather-app. An attacker can exploit this vulnerability by placing a '... /' sequence in the URL to gain access to the file system...

7.5CVSS7.6AI score0.02005EPSS
Exploits1References1
OSV
OSV
added 2018/06/07 2:29 a.m.4 views

CVE-2017-16184

scott-blanch-weather-app is a sample Node.js app using Express 4. scott-blanch-weather-app is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS5.8AI score0.02005EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2018/02/05 1:55 p.m.39 views

Important: Red Hat Security Advisory: Red Hat Satellite 6 security, bug fix, and enhancement update

An update is now available for Red Hat Satellite 6.2 for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...

5.3CVSS6AI score0.02694EPSS
Exploits0References19
Schneier on Security
Schneier on Security
added 2017/11/16 12:53 p.m.49 views

Motherboard Digital Security Guide

This digital security guide by Motherboard is very good. I put alongside EFF's "Surveillance Self-Defense" and John Scott-Railton's "Digital Security Low Hanging Fruit." There's also "Digital Security and Privacy for Human Rights Defenders." There are too many of these...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/08/11 5:57 a.m.10 views

scott-montevideo.com.uy XSS vulnerability

Vulnerable URL: http://www.scott-montevideo.com.uy/prod.php?cat=11%27%22%3E%3Csvg/onload=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 27.11.2017 Latest check for patch:| 27.11.2017 21:39 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...

6.3AI score
Exploits0
Node.js
Node.js
added 2017/07/17 9:20 p.m.60 views

Directory Traversal

Overview Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the...

5CVSS4.6AI score0.02005EPSS
Exploits1Affected Software1
0day.today
0day.today
added 2016/11/24 12:0 a.m.79 views

Microsoft Edge Scripting Engine - Memory Corruption (MS16-129) Exploit

Exploit for windows platform in category dos / poc !-- Source: http://www.security-assessment.com/files/documents/advisory/edgechakramemcorruption.pdf Name: Microsoft Edge Scripting Engine Memory Corruption Vulnerability MS16-129 CVE: CVE-2016-7202 Vendor Website: http://www.microsoft.com/ Date...

7.6CVSS7.8AI score0.73289EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2016/08/18 6:58 p.m.90 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 3.0.3 Service Pack 1 security update

Updated packages that provide Red Hat JBoss Web Server 3.0.3 Service Pack 1 and fixes two security issues and a bug with ajp processors are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

8.1CVSS6.8AI score0.55724EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/08/18 6:20 p.m.78 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 3.0.3 Service Pack 1 security update

Updated packages that provide Red Hat JBoss Web Server 3.0.3 Service Pack 1 and fixes two security issues and a bug with ajp processors are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

8.1CVSS6.8AI score0.55724EPSS
Exploits0References7
Rows per page
Query Builder