Lucene search
K

25 matches found

Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.9 views

PT-2026-44132

Description X509Authenticator implements client-certificate mTLS authentication: the web server validates the client's certificate against a trusted CA, then passes the certificate's Subject DN Distinguished Name: a string like CN=Alice,O=Example,[email protected] to Symfony via $...

8.7CVSS5.8AI score0.00069EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.7 views

PT-2026-21335

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.18 Description The software handles Discord moderation actions timeout, kick, ban using information from request parameters instead of a secure source. This allows a user without administrative privileges to...

2.3CVSS5.3AI score0.0019EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/09 11:55 a.m.6 views

CVE-2018-4391

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, watchOS 4.3, iOS 12.1. Processing a maliciously crafted text message may lead to UI spoofi...

5.5CVSS5.6AI score0.00855EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-2342

Malware in sbrugna...

7.5CVSS7.4AI score0.00518EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-18044

Malware in sbrugna...

6.5CVSS6.5AI score0.0077EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-16177

Malware in sbrugna...

5.5CVSS7.3AI score0.00855EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-15620

Malicious code in bioql PyPI...

4.8CVSS3.9AI score0.00572EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.3 views

webkitgtk: issue was addressed with improved UI handling

A vulnerability was found in webkitgtk, where an issue was addressed with improved UI handling. Visiting a website that frames malicious content may lead to UI spoofing...

6.1CVSS5.7AI score0.01192EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 4:19 a.m.6 views

CVE-2023-42438

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.1. Visiting a malicious website may lead to user interface spoofing...

4.3CVSS5.9AI score0.00638EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/20 11:18 p.m.9 views

CVE-2025-4858

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

4.8CVSS6.4AI score0.00572EPSS
Exploits1
Cvelist
Cvelist
added 2025/05/18 4:0 a.m.16 views

CVE-2025-4858 D-Link DAP-2695 ARP Spoofing Prevention Page adv_arpspoofing.php cross site scripting

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

4.8CVSS0.00572EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/05/18 4:0 a.m.7 views

CVE-2025-4858 D-Link DAP-2695 ARP Spoofing Prevention Page adv_arpspoofing.php cross site scripting

A vulnerability was found in D-Link DAP-2695 120b36r137ALLen20210528. It has been declared as problematic. This vulnerability affects unknown code of the file /advarpspoofing.php of the component ARP Spoofing Prevention Page. The manipulation of the argument harpmac leads to cross site scripting...

4.8CVSS3.6AI score0.00572EPSS
Exploits1References5
CVE
CVE
added 2025/05/18 4:0 a.m.42 views

CVE-2025-4858

The CVE-2025-4858 entry concerns D-Link DAP-2695 (ARP Spoofing Prevention Page) where the param harp_mac in /adv_arpspoofing.php is vulnerable to cross-site scripting. Multiple sources confirm remote exploitability and exploitation disclosed publicly, with affected products being out of maintenan...

4.8CVSS3.7AI score0.00572EPSS
Exploits1References5Affected Software1
The Hacker News
The Hacker News
added 2023/12/20 11:5 a.m.33 views

Product Explained: Memcyco's Real-Time Defense Against Website Spoofing

Hands-On Review: Memcyco's Threat Intelligence Solution Website impersonation, also known as brandjacking or website spoofing, has emerged as a significant threat to online businesses. Malicious actors clone legitimate websites to trick customers, leading to financial scams and data theft causing...

6.9AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.4 views

SUSE CVE-2020-6808

When a JavaScript URL javascript: is evaluated and the result is a string, this string is parsed to create an HTML document, which is then presented. Previously, this document's URL as reported by the document.location property, for example was the originating javascript: URL which could lead to...

6.5CVSS8.2AI score0.01039EPSS
Exploits0References4
OSV
OSV
added 2022/12/19 8:22 p.m.5 views

CLSA-2022-1671481339 openssh: Fix of 2 CVEs

CVE-2019-6109: verify character encoding in progress display to avoid spoofing of scp client output - CVE-2016-10012: updated to fix server-side protocol errors observed during rekeying with compression enabled...

7.8CVSS7AI score0.03807EPSS
Exploits1References1
wpexploit
wpexploit
added 2022/10/28 12:0 a.m.90 views

Login Block IPs <= 1.0.0 - IP Spoofing Bypass

The function checkisloginpage uses headers for the IP check, which can be easily spoofed. Set HTTPCLIENTIP to bypass blocks / use allowed IP addresses...

7.5CVSS0.7AI score0.00664EPSS
Exploits2
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/05/23 6:0 p.m.24 views

Anatomy of a DDoS amplification attack

Amplification attacks are one of the most common distributed denial of service DDoS attack vectors. These attacks are typically categorized as flooding or volumetric attacks, where the attacker succeeds in generating more traffic than the target can process, resulting in exhausting its resources...

0.5AI score
Exploits0
Kitploit
Kitploit
added 2017/09/26 1:43 p.m.13 views

SCUTUM - Linux Automatic ARP (TCP / UDP / ICMP) Firewall

SCUTUM - Linux Automatic ARP TCP / UDP / ICMP Firewall Current Version Change log: 1. Added Self-Upgrading Function, now users can execute self-upgrading with $ sudo scutum --upgrade 2. Added AVALON Framework Self-Upgrading function included when using "--upgrade" parameter Recent Changes: 1...

7.3AI score
Exploits0References1
n0where
n0where
added 2017/06/19 5:53 p.m.30 views

ARP Firewall: SCUTUM

SCUTUM is an ARP firewall that prevents your computer from being arp spoofed. Scutum controls “arptables” in your computer so it accepts ARP packets only from the gateway. This way, people with malicious intentions cannot spoof your arp table. Scutum also prevents other people from detecting your...

0.4AI score
Exploits0References1
Rows per page
Query Builder