CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

The Hacker News•added 2023/04/13 11:10 a.m.•2 views

New Python-Based "Legion" Hacking Tool Emerges on Telegram

An emerging Python-based credential harvester and a hacking tool named Legion is being marketed via Telegram as a way for threat actors to break into various online services for further exploitation. Legion, according to Cado Labs, includes modules to enumerate vulnerable SMTP servers, conduct...

8.3AI score

Exploits0

Exploit DB•added 2020/01/16 12:0 a.m.•443 views

WordPress Plugin Postie 1.9.40 - Persistent Cross-Site Scripting

Exploit Title: WordPress Plugin Postie 1.9.40 - Persistent Cross-Site Scripting Google Dork: inurl:/wp-content/plugins/postie/readme.txt Date: 2020-01-15 Exploit Author: V1n1v131r4 Vendor Homepage: https://postieplugin.com/ Software Link: https://wordpress.org/plugins/postie/developers Version:...

5.4CVSS5.6AI score0.00878EPSS

Exploits6

Packet Storm•added 2020/01/15 12:0 a.m.•141 views

WordPress Postie 1.9.40 Cross Site Scripting

5CVSS5.4AI score0.00878EPSS

Exploits6

Hacker One•added 2016/12/22 8:40 a.m.•205 views

Zendesk: SMTP user enumeration via mail.zendesk.com

Several methods exist that can be used to ██████████ SMTP to enumerate valid usernames and addresses; namely VRFY, EXPN, and RCPT TO. mail.zendesk.com does not reply to EXPN or RCPT TO so we will concentrate on VRFY in this report. The VRFY command will request that the receiving SMTP server veri...

7.2AI score

Exploits0

OpenVAS•added 2011/06/01 12:0 a.m.•26 views

Nmap NSE net: smtp-enum-users

Attempts to enumerate the users on a SMTP server by issuing the VRFY, EXPN or RCPT TO commands. The goal of this script is to discover all the user accounts in the remote system. The script will output the list of user names that were found. The script will stop querying the SMTP server if...

7.7AI score

Exploits0