Information Disclosure

libcurl.so is vulnerable to Information Disclosure. The SSH server's public key is verified with the use of a SHA 256 hash functionality provided by the library, however if the check is unsuccessful, the fingerprint's memory will be released before an error message is returned. This issue puts...

CVE-2023-28319

A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...

How cryptocurrency mining works: Bitcoin vs. Monero

Ever wondered why websites that are mining in the background don’t mine for the immensely hot Bitcoin, but for Monero instead? We can explain that. As there are different types of cryptocurrencies, there are also different types of mining. After providing you with some background information abou...

xpl_detail.pl.txt

This is a multi-part message in MIME format. ------=NextPart000003201C5473D.B3E3E000 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable http://icis.digitalparadox.org/exploits/xpldetail.pl =20 !/usr/bin/perl use IO::Socket; use Getopt::Std; print "xASP NUKE...

Multiple Sql injection and XSS in Asp Nuke 0.80 (Working exploits included)

Severity: High Title: Multiple Sql injection and XSS in Asp Nuke 0.80 Working exploits included Date: 22/04/2005 Vendor: Asp Nuke Vendor Website: http://www.aspnuke.com/ Summary: There are, multiple sql injection and xss in asp nuke 0.80. Proof of Concept Exploits:...