Exploit for Server-Side Request Forgery in Apache Http_Server

CVE-2024-40898 This Python script checks for the presence of C...

Exploit for CVE-2021-1675

PrintNightmare CVE-2021-1675 This Zeek script detects succe...

Introducing Page Integrity Manager

On May 26, Akamai launched our Page Integrity Manager, extending our solutions for securing and delivering digital experiences. During beta, we monitored more than one trillion real-user interactions to understand script composition and behavior. Above all, one thing stood out: Scripts loaded in...

Tor: Cross-domain linkability when system time changed in Tor Browser

This report is inspired by 257942. That report uses languagechange event as an indicator for different tabs to link multiple visits to a single user. This report uses another trick to achieve the same thing. Malicious websites keeps reading Date.now inside a setInterval loop with a short interval...

IBM Websphere MQ Detection (Linux/Unix SSH Login)

This script search for SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.811904";...

Piwik Analytics Detection

The script sends a HTTP request to the server and attempts to identify Piwik and its version from the reply. SPDX-FileCopyrightText: 2015 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Symantec LiveUpdate Administrator Version Detection

Detects the installed version of Symantec LiveUpdate Administrator. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

Error pages can be used to guess local file paths

Remote web pages should not be able to detect what files a user has on their local machine. Certain error pages do not apply this restriction correctly, allowing web pages to produce an error page where a script can run. The script can then use various events to detect whether files on the user's...

CVE-2005-4514

The encapsulation script mechanism in Webwasher CSM Appliance Suite 5.x uses case-sensitive detection of malicious tokens, which allows attackers to bypass script detection by using tokens that can be upper or lower case. NOTE: the vendor has stated that this problem could not be reproduced, and...

CVE-2005-4514

CVE-2005-4514 concerns the Webwasher CSM Appliance Suite 5.x, where the encapsulation script mechanism uses case-sensitive detection of malicious tokens. This allows bypassing script detection by presenting tokens in mixed case (upper/lower). The vendor notes the issue could not be reproduced as ...

CVE-2005-4514

The encapsulation script mechanism in Webwasher CSM Appliance Suite 5.x uses case-sensitive detection of malicious tokens, which allows attackers to bypass script detection by using tokens that can be upper or lower case. NOTE: the vendor has stated that this problem could not be reproduced, and...

alya.cgi CGI Backdoor Detection

alya.cgi was found on the remote system. This script is likely a CGI based backdoor distributed with multiple rootkits. This script was written by Jason Lidow Changes by Tenable: - Overhauled description, added Synopsis/Reference/Solution 12/8/2008 include"compat.inc"; if description scriptid1111...