Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

The Hacker News
The Hacker Newsadded 2023/02/13 7:44 a.m.25 views

Hackers Targeting U.S. and German Firms Monitor Victims' Desktops with Screenshotter

A previously unknown threat actor has been targeting companies in the U.S. and Germany with bespoke malware designed to steal confidential information. Enterprise security company Proofpoint, which is tracking the activity cluster under the name Screentime, said the group, dubbed TA866, is likely...

Exploits0
Github Security Blog
Github Security Blogadded 2022/03/25 7:20 p.m.31 views

Insertion of Sensitive Information into Log File in Jupyter notebook

Impact What kind of vulnerability is it? Anytime a 5xx error is triggered, the auth cookie and other header values are recorded in Jupyter Server logs by default. Considering these logs do not require root access, an attacker can monitor these logs, steal sensitive auth/cookie information, and ga...

7.5CVSS1.9AI score0.00374EPSS
Exploits0References5Affected Software1
Hacker One
Hacker Oneadded 2021/10/23 2:15 p.m.35 views

Mail.ru: reflected xss in e.mail.ru

Login and go to https://e.mail.ru/addressbook/letter/S?afterReload=1&MailboxStatusAutoCall=alert1 Impact Stealing users' information...

1.2AI score
Exploits0
Talos Blog
Talos Blogadded 2021/02/25 11:0 a.m.28 views

Threat Source newsletter (Feb. 25, 2021)

Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers. We all think of APTs as these wide-reaching, silent threat groups who are backed by a nation-state. But our recent research into Gamaredon shows that not all APTs are created equal. We’ve spotted this actor carrying out several...

1.2AI score
Exploits0
Packet Storm
Packet Stormadded 2019/01/07 12:0 a.m.64 views

PLC Wireless Router GPN2.4P21-C-CN Cross Site Scripting

Exploit Title: PLC Wireless Router GPN2.4P21-C-CN -Reflected XSS Date: 21/12/2018 Exploit Author: Kumar Saurav Reference: https://0dayfindings.home.blog/2018/12/26/plc-wireless-router-gpn2-4p21-c-cn-reflected-xss/ Vendor: ChinaMobile Category: Hardware Version: GPN2.4P21-C-CN Firmware: W2001EN-00...

0.02454EPSS
Exploits7
NVD
NVDadded 2017/07/17 1:18 p.m.8 views

CVE-2017-1000011

MyWebSQL version 3.6 is vulnerable to stored XSS in the database manager component resulting in account takeover or stealing of information...

6.1CVSS6AI score0.0021EPSS
Exploits0References1
The Hacker News
The Hacker Newsadded 2013/07/01 4:34 p.m.7 views

Android based hacking tool to steal passwords from connected computers

A recently discovered new form of Android malware called USB Cleaver can not only infect your smartphone, but also targets your PC to steal sensitive information from it. A hacking tool discovered by analysts at F-Secure, which is capable of stealing information from a connected Windows machine...

6.5AI score
Exploits0
Rows per page
Query Builder