Lucene search
K

1381 matches found

Packet Storm News
Packet Storm News
added 2026/03/16 12:0 a.m.1 views

Stegano 2.3.0

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit LSB technique. It is possible to use a more advanced LSB method based on integers sets. The sets Sieve of...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/11 8:51 a.m.3 views

OPENSUSE-SU-2026:20341-1 Security update for kea

This update for kea fixes the following issues: Update to release 3.0.1: - CVE-2025-40779: Fixed crash upon interaction between specific client options and subnet selection bsc1248801...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.1 views

TOSSS: A CVE-Based Software Security Benchmark for Large Language Models

With their increasing capabilities, Large Language Models LLMs are now used across many industries. They have become useful tools for software engineers and support a wide range of development tasks. As LLMs are increasingly used in software development workflows, a critical question arises: are...

5.9AI score
Exploits0
OSV
OSV
added 2026/03/10 6:28 p.m.5 views

GO-2026-4627 Gogs: DOM-based XSS via milestone selection in gogs.io/gogs

Gogs: DOM-based XSS via milestone selection in gogs.io/gogs...

7.3CVSS5.8AI score0.00184EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/01 1:43 a.m.4 views

CVE-2026-27832

Group-Office is an enterprise customer relationship management and groupware tool. Versions prior to 26.0.8, 25.0.87, and 6.8.153 have a SQL Injection SQLi vulnerability, exploitable through the advancedQueryData parameter comparator field on an authenticated endpoint. The endpoint...

8.8CVSS6AI score0.00244EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/28 12:0 a.m.9 views

SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2026:0617-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0617-1 advisory. The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: -...

7.8CVSS7.3AI score0.09117EPSS
Exploits3References1182
Vulnrichment
Vulnrichment
added 2026/02/27 7:49 p.m.4 views

CVE-2026-27832 Group-Office Has Authenticated SQL Injection in advancedQueryData.comparator

Group-Office is an enterprise customer relationship management and groupware tool. Versions prior to 26.0.8, 25.0.87, and 6.8.153 have a SQL Injection SQLi vulnerability, exploitable through the advancedQueryData parameter comparator field on an authenticated endpoint. The endpoint...

7.1CVSS6AI score0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/27 7:49 p.m.20 views

CVE-2026-27832 Group-Office Has Authenticated SQL Injection in advancedQueryData.comparator

Group-Office is an enterprise customer relationship management and groupware tool. Versions prior to 26.0.8, 25.0.87, and 6.8.153 have a SQL Injection SQLi vulnerability, exploitable through the advancedQueryData parameter comparator field on an authenticated endpoint. The endpoint...

7.1CVSS0.00244EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/20 2:47 a.m.3 views

CVE-2026-27017

uTLS is a fork of crypto/tls, created to customize ClientHello for fingerprinting resistance while still using it for the handshake. Versions 1.6.0 through 1.8.0 contain a fingerprint mismatch with Chrome when using GREASE ECH, related to cipher suite selection. When Chrome selects the preferred...

2.3CVSS5.5AI score0.00154EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.9 views

uTLS 安全漏洞

uTLS is an open-source Go language codebase developed by Refraction Networking. Versions 1.6.0 to 1.8.0 of uTLS contain security vulnerabilities. These vulnerabilities stem from inconsistent password selection logic when using GREASE ECH, which may lead to fingerprint mismatches...

5.3CVSS5.8AI score0.00154EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 9:16 p.m.7 views

CVE-2020-37193

ZIP Password Recovery 2.30 contains a denial of service vulnerability that allows attackers to crash the application by providing maliciously crafted input. Attackers can create a specially prepared text file with specific characters to trigger an application crash when selecting a ZIP file...

7.5CVSS0.00383EPSS
Exploits0References3
CVE
CVE
added 2026/02/11 8:37 p.m.9 views

CVE-2020-37193

CVE-2020-37193 concerns ZIP Password Recovery 2.30, which contains a denial-of-service vulnerability that can crash the application when a specially prepared text file (with specific characters) is used while selecting a ZIP file. The initial document provides CVSS data (4.0/4.6 in CVSS 4.0 with ...

7.5CVSS5.5AI score0.00383EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/02/10 12:0 a.m.9 views

LLM-FS: Zero-Shot Feature Selection for Effective and Interpretable Malware Detection

Feature selection FS remains essential for building accurate and interpretable detection models, particularly in high-dimensional malware datasets. Conventional FS methods such as Extra Trees, Variance Threshold, Tree-based models, Chi-Squared tests, ANOVA, Random Selection, and Sequential...

5.6AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/02/07 11:32 a.m.8 views

CVE-2026-2084

A weakness has been identified in D-Link DIR-823X 250416. This impacts an unknown function of the file /goform/setlanguage. Executing a manipulation of the argument langSelection can lead to os command injection. It is possible to launch the attack remotely. The exploit has been made available to...

8.6CVSS7AI score0.03855EPSS
Exploits1References6Affected Software1
GithubExploit
GithubExploit
added 2026/02/04 11:0 a.m.185 views

wechat-monitor-poc

WeChat Message Monitoring PoC Project Project Description...

5.9AI score
Exploits0
Oracle linux
Oracle linux
added 2026/01/30 12:0 a.m.8 views

openssl security update

1:1.1.1k-14 - Backport fix for Out-of-bounds read & write in RFC 3211 KEK Unwrap Fix CVE-2025-9230 Resolves: RHEL-128613 - Fix bug for ticketlifetimehint exceed issue Resolves: RHEL-119891 1:1.1.1k-13 - Backport fix SSLselectnext proto from OpenSSL 3.2 Fix CVE-2024-5535 Resolves: RHEL-45654...

7.5CVSS6.7AI score0.05582EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/01/29 9:21 p.m.6 views

CVE-2020-36967

Zortam Mp3 Media Studio 27.60 contains a buffer overflow vulnerability in the library creation file selection process that allows remote code execution. Attackers can craft a malicious text file with shellcode to trigger a structured exception handler SEH overwrite and execute arbitrary commands ...

9.8CVSS6.5AI score0.00512EPSS
Exploits0References1
NVD
NVD
added 2026/01/28 6:16 p.m.10 views

CVE-2020-36967

Zortam Mp3 Media Studio 27.60 contains a buffer overflow vulnerability in the library creation file selection process that allows remote code execution. Attackers can craft a malicious text file with shellcode to trigger a structured exception handler SEH overwrite and execute arbitrary commands ...

9.8CVSS0.00512EPSS
Exploits0References4
EUVD
EUVD
added 2026/01/28 5:35 p.m.7 views

EUVD-2020-30883

Zortam Mp3 Media Studio 27.60 contains a buffer overflow vulnerability in the library creation file selection process that allows remote code execution. Attackers can craft a malicious text file with shellcode to trigger a structured exception handler SEH overwrite and execute arbitrary commands ...

9.8CVSS6.5AI score0.00512EPSS
Exploits0References4
CVE
CVE
added 2026/01/28 5:35 p.m.10 views

CVE-2020-36967

CVE-2020-36967 affects Zortam Mp3 Media Studio 27.60. The vulnerability is a buffer overflow in the library creation file selection process that can trigger a structured exception handler (SEH) overwrite, enabling remote code execution when a crafted malicious text file is opened or processed. Th...

9.8CVSS6.5AI score0.00512EPSS
Exploits0References4
Rows per page
Query Builder