10 matches found
Exploit for Deserialization of Untrusted Data in Facebook React
React2P4IM0Nshell 💥Extension Tool para...
CVE-2024-11234
creationtimestamp| type| source ---|---|--- 2024-11-26 21:49:35+00:00| published-proof-of-concept| https://t.me/LeakDBMS/1523...
GDidees CMS 安全漏洞
GDidees CMS is a website builder from GDidees. A security vulnerability exists in GDidees CMS version v3.9.1, which originates from a source code leak for the backup function. An attacker can exploit the vulnerability to access the code via /admin/backup.php...
SUSE CVE-2019-19083
Memory leaks in clocksourcecreate functions under drivers/gpu/drm/amd/display/dc in the Linux kernel before 5.3.8 allow attackers to cause a denial of service memory consumption. This affects the dce112clocksourcecreate function in drivers/gpu/drm/amd/display/dc/dce112/dce112resource.c, the...
PT-2022-17695 · Grafana +2 · Grafana +2
Name of the Vulnerable Software and Affected Versions: Grafana versions through 7.3.4 Description: An issue was discovered in Grafana when integrated with Zabbix, allowing the Zabbix password to be found in the "api jsonrpc.php" HTML source code. When a user logs in and is allowed to register, on...
GHSA-XF64-2F9P-6PQQ Information Exposure in type-graphql
Versions of type-graphql prior to 0.17.6 are vulnerable to Information Exposure. The package leaks the resolver source code in an error message. It is possible to force this error when no subscription topics are provided in the request. Recommendation Upgrade to version 0.17.6 or later...
CVE-2018-13378
An information disclosure vulnerability in Fortinet FortiSIEM 5.2.0 and below versions exposes the LDAP server plaintext password via the HTML source code...
Pligg CMS 2.0.1 - Multiple Vulnerabilities
!/usr/bin/python Exploit Title: Pligg useremail; 62. $subject = $mainsmarty-getconfigvars"PLIGGVisualName".' '.$mainsmarty-getconfigvars"PLIGGPassEmailSubject"; 63. 64. $body = sprintf 65. $mainsmarty-getconfigvars"PLIGGPassEmailPassBody", 66. $mainsmarty-getconfigvars"PLIGGVisualName", 67...
Massive Compromise of WordPress Sites Leads To Phoenix Exploit Kit
Researchers at the security firm M86 report that hackers have compromised hundreds of Web sites that use the WordPress content management system. The sites, mostly small Web pages and blogs, are being used to fool spam filters and redirect unwitting visitors to drive by download Websites that wil...
Multiple RaidenHTTPD Web Server vulnerabilities
Buffer overflow, script source leak...