Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/04/07 5:3 p.m.8 views

CVE-2026-34783

Ferret is a declarative system for working with web data. Prior to 2.0.0-alpha.4, a path traversal vulnerability in Ferret's IO::FS::WRITE standard library function allows a malicious website to write arbitrary files to the filesystem of the machine running Ferret. When an operator scrapes a...

8.1CVSS6.6AI score0.00514EPSS
Exploits1References1
OSV
OSV
added 2026/04/01 11:37 p.m.4 views

GHSA-J6V5-G24H-VG4J Ferret: Path Traversal in IO::FS::WRITE allows arbitrary file write when scraping malicious websites

Summary A path traversal vulnerability in Ferret's IO::FS::WRITE standard library function allows a malicious website to write arbitrary files to the filesystem of the machine running Ferret. When an operator scrapes a website that returns filenames containing ../ sequences, and uses those...

8.1CVSS6.6AI score0.00514EPSS
Exploits1References4
Packet Storm News
Packet Storm News
added 2025/06/20 12:0 a.m.5 views

A Common Pool of Privacy Problems: Legal and Technical Lessons from a Large-Scale Web-Scraped Machine Learning Dataset

We investigate the contents of web-scraped data for training AI systems, at sizes where human dataset curators and compilers no longer manually annotate every sample. Building off of prior privacy concerns in machine learning models, we ask: What are the legal privacy implications of web-scraped...

6.7AI score
Exploits0
OSV
OSV
added 2025/02/26 9:19 p.m.49 views

PYSEC-2025-7 Posts scraped data to IP address associated with other malware distribution attacks.

Published in 2021, the imblog package is a Python library that scrapes data from a blog page to an IP address associated with other malware distribution attacks...

7AI score
Exploits0References2
The Hacker News
The Hacker News
added 2024/02/17 7:26 a.m.47 views

Google Open Sources Magika: AI-Powered File Identification Tool

Google has announced that it's open-sourcing Magika, an artificial intelligence AI-powered tool to identify file types, to help defenders accurately detect binary and textual file types. "Magika outperforms conventional file identification methods providing an overall 30% accuracy boost and up to...

9.8CVSS9.7AI score0.12661EPSS
Exploits0
HackRead
HackRead
added 2023/11/07 11:59 p.m.19 views

Hacker Leaks 35 Million Scraped LinkedIn User Records

By Waqas The hacker responsible for this leak is the same individual who previously leaked databases from InfraGard and Twitter. This is a post from HackRead.com Read the original post: Hacker Leaks 35 Million Scraped LinkedIn User Records...

7.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/09/01 11:7 a.m.14 views

Spyware Vendor Hacked

A Brazilian spyware app vendor was hacked by activists: In an undated note seen by TechCrunch, the unnamed hackers described how they found and exploited several security vulnerabilities that allowed them to compromise WebDetetive’s servers and access its user databases. By exploiting other flaws...

6.9AI score
Exploits0
HackRead
HackRead
added 2022/12/28 2:17 a.m.18 views

400 Million Twitter Users’ Scraped Info Goes on Sale!

By Habiba Rashid The threat actor claims that Twitter data was "scraped via a vulnerability." This is a post from HackRead.com Read the original post: 400 Million Twitter Users Scraped Info Goes on Sale!...

2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2021/04/10 1:22 p.m.61 views

Oh Look, LinkedIn Also Had 500M Users' Data Scraped

Plus: A bad Zoom bug, a billion-dollar cocaine bust, and more of the week's top security news...

1.8AI score
Exploits0
Rows per page
Query Builder