MAL-2024-2297 Malicious code in en-conduit-electron-renderer (npm)

--- -= Per source details. Do not edit below this line.=-...

CGA-R59G-CC2P-9J5P

Bulletin has no description...

eno.org Cross Site Scripting vulnerability OBB-2451789

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

clever-toy.ru Cross Site Scripting vulnerability OBB-1270476

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

MySQL Enterprise Monitor 3.4.x < 3.4.10 / 4.x < 4.0.7 / 8.x < 8.0.3 Multiple Vulnerabilities (Oct 2018 CPU)

According to its self-reported version, the MySQL Enterprise Monitor running on the remote host is affected by the following vulnerabilities in its subcomponents: - Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is...

CVE-2018-20835

CVE-2018-20835 affects tar-fs (node tar extraction library) before version 1.16.2. The vulnerability is an Arbitrary File Overwrite that occurs when extracting a tarball containing a hardlink to a file that already exists on the system, combined with a later plain file named the same as the hardl...

Microsoft Windows 10: Load and unload device drivers

This policy setting determines which users can dynamically load and unload device drivers. This user right is not required if a signed driver for the new hardware already exists in the driver.cab file on the device. Device drivers run as highly privileged code. Windows supports the Plug and Play...

phpEnter 4.2.7 - (Add New Post) Cross-Site Request Forgery

Exploit for php platform in category web applications function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "http://sitename/path/addnews.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8"; xhr.setRequestHeader"Accept-Language"...

Get Simple CMS 3.3.3 CSRF / XSS / Clickjacking Vulnerabilities

Get Simple CMS version 3.3.3 suffers from cross site request forgery, clickjacking, and various cross site scripting vulnerabilities. Affected Vendor: http://get-simple.info/ Date: 23/09/2014 Discovered by: JoeV Type of vulnerability: CSRF, Click-jacking, DOM based XSS and XSS Tested on: Windows ...

Opencourrier 2.03beta &#40;RFI/LFI&#41; Multiple File Include Vulnerability

=================================================================== Opencourrier 2.03beta RFI/LFI Multiple File Include Vulnerability =================================================================== + Opencourrier 2.03beta RFI/LFI Multiple File Include Vulnerability...

Infinity &lt;= 2.0.5 Arbitrary Create Admin Exploit

No description provided by source. ?php printr' || || | || o,7 || . o7 || q||| o///, : / / . /QQQQQQQQQQQQQQQQQQQ\ q Infinity = 2.0.5 Create Admin /QQQ/\QQQ\ /QQQQQ/ \QQQQQQ\ q POST 3 /QQQQ/ QQQQ\ /QQQQ/ \QQQQ\ q Owned : |QQQQ/ By Qabandi \QQQQ| |QQQQ| |QQQQ| |QQQQ| From Kuwait, PEACE... |QQQQ|...

YourTube <= 2.0 Arbitrary Database Disclosure Exploit

Exploit for unknown platform in category web applications ===================================================== YourTube exploit : YourTube info : http://www.ac4p.com //= DORK: "powered by yourtube" //= greats 4 our members in our home -- /// // - Upload this file to Apache server and fill victim...

OTSTurntables 1.00.027 Overflow

!/usr/bin/perl By AlpHaNiX NullArea.Net alphaathacker.bz Made in Tunisia my $junk = "\x41" x 96 ; whatever bytes my $nop = "\x90" x 20 ; bla bla xD win32exec - EXITFUNC=seh CMD=calc Size=160 Encoder=PexFnstenvSub , thanks metasploit my $shellcode =...

Scorp Book 1.0 - smilies.php?config Remote File Inclusion

Scorp Book 1.0 - smilies.php?config Remote File Inclusion !/usr/bin/perl .-""""""""-. / Dj7xpl \ | | |, .-. .-. ,| | o/ \o | |/ /\ | @ ^^ \|IIIIII|/ @8@8 / \ / @ Iranian Are The Best In World Portal.......: Scorp Book v1.0 Download.....: http://www.ectona.org/download/?id=598&s=info...