Lucene search
K

20 matches found

GithubExploit
GithubExploit
added 2026/03/15 2:11 a.m.114 views

linux-security-tools

Linux Security Tools Linux security tools, scanners, crackers...

5.7AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-32160

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00451EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-50982

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00597EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/08 12:29 a.m.16 views

CVE-2025-54872

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS6.3AI score0.00322EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 12:15 a.m.5 views

CVE-2025-54872

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS0.00322EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/06 12:0 a.m.2 views

Onion Site Template 信任管理问题漏洞

Onion Site Template is a self-hosted example from Vessel9817 Individual Developer. Onion Site Template suffers from a trust management issue vulnerability that stems from the inclusion of a fixed tor mirror, which could lead to a compromised website...

8.7CVSS6.5AI score0.00322EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/05 11:40 p.m.10 views

CVE-2025-54872 onion-site-template tor Secrets Baked Into Image

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS0.00322EPSS
Exploits0References2
OSV
OSV
added 2025/08/05 11:40 p.m.9 views

CVE-2025-54872 onion-site-template tor Secrets Baked Into Image

onion-site-template is a complete, scalable tor hidden service self-hosting sample. Versions which include commit 3196bd89 contain a baked-in tor image if the secrets were copied from an existing onion domain. A website could be compromised if a user shared the baked-in image, or if someone were...

8.7CVSS6.7AI score0.00322EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.8 views

PT-2025-32004 · Unknown · Onion-Site-Template

Name of the Vulnerable Software and Affected Versions: onion-site-template versions including commit 3196bd89 Description: onion-site-template, a complete and scalable Tor hidden service self-hosting sample, contains a baked-in Tor image when secrets are copied from an existing onion domain. A...

8.7CVSS6.5AI score0.00322EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/10/27 12:0 a.m.18 views

CVE-2023-46816

An issue was discovered in SugarCRM 12 before 12.0.4 and 13 before 13.0.2. A Server Site Template Injection SSTI vulnerability has been identified in the GecControl action. By using a crafted request, custom PHP code can be injected via the GetControl action because of missing input validation. A...

9AI score0.00597EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.39 views

K24248011: Traffix SDC Configuration utility vulnerability CVE-2022-27662

Security Advisory Description A stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context of the server. CVE-2022-27662 Impact If successful, a...

4.8CVSS5.5AI score0.00451EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2022/10/10 12:0 a.m.16 views

PT-2022-04: Cross Site Template Injection (CSTI)

Input validation was missing while creating the working set, in working set manager application. Nokia NetAct users can create a Working Set with a name that injects a client-side template Injection payloads. The attack can only be performed by an internal user. The vulnerability is fixed in NetA...

8.8CVSS7.7AI score0.0059EPSS
Exploits0
OSV
OSV
added 2022/06/20 8:18 p.m.6 views

MAL-2022-6133 Malicious code in site-template (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e075d427082f3f44192d5a74dbea3f7c29af746eb9fdea5c30808e8c2b7a8bda Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:18 p.m.3 views

Malicious code in site-template (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e075d427082f3f44192d5a74dbea3f7c29af746eb9fdea5c30808e8c2b7a8bda Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2022/05/07 12:0 a.m.30 views

F5 Traffix SDC Cross-Site Template Injection Vulnerability

F5 Traffix Signaling Delivery Controller F5 Traffix SDC is a signaling delivery controller from F5 USA, Inc. F5 Traffix SDC is vulnerable to cross-site template injection, which can be exploited by attackers to execute language-specific commands in the template server context...

4.8CVSS5.7AI score0.00451EPSS
Exploits0References1
NVD
NVD
added 2022/05/05 5:15 p.m.17 views

CVE-2022-27662

On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context...

4.8CVSS0.00451EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/05 4:29 p.m.22 views

CVE-2022-27662

On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context...

4.8CVSS5.7AI score0.00451EPSS
Exploits0References1
CVE
CVE
added 2022/05/05 4:29 p.m.82 views

CVE-2022-27662

CVE-2022-27662 affects F5 Traffix SDC: stored Cross-Site Template Injection in the Traffix SDC Configuration utility. Affected versions are 5.2.x prior to 5.2.2 and 5.1.x prior to 5.1.35. The underlying issue enables an attacker to execute template language-specific instructions in the server con...

4.8CVSS5.6AI score0.00451EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/05/05 12:0 a.m.5 views

F5 Traffix SDC 安全漏洞

F5 Traffix Signaling Delivery Controller F5 Traffix SDC is a signaling delivery controller from F5 USA, Inc. F5 Traffix SDC is vulnerable to cross-site template injection, which can be exploited by attackers to execute language-specific commands in the template server context...

4.8CVSS5.4AI score0.00451EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/04 7:45 p.m.3 views

CVE-2022-27662

On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context...

4.8CVSS6AI score0.00451EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder