1660 matches found
EUVD-2024-54457
Malicious code in bioql PyPI...
EUVD-2025-7346
Malicious code in bioql PyPI...
EUVD-2025-25473
Malicious code in bioql PyPI...
Cron Persistence
This module will create a cron or crontab entry to execute a payload. The module includes the ability to automatically clean up those entries to prevent multiple executions. syslog will get a copy of the cron entry. Verified on Ubuntu 22.04.1, MacOS 13.7.4 Module Options msf use...
CVE-2025-10084
A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /api/logs/error/1 of the component SysLogController. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit is publicly...
Linux Distros Unpatched Vulnerability : CVE-2020-13881
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In support.c in pamtacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used. CVE-2020-13881 Not...
Linux Distros Unpatched Vulnerability : CVE-2015-1343
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of unity-scope-gdrive logs search terms to syslog. CVE-2015-1343 Note that Nessus relies on the presence of the package as reported by the vendor...
CVE-2025-10084
A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /api/logs/error/1 of the component SysLogController. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit is publicly...
CVE-2025-10084 elunez eladmin SysLogController 1 queryErrorLogDetail improper authorization
A vulnerability was identified in elunez eladmin up to 2.7. This affects the function queryErrorLogDetail of the file /api/logs/error/1 of the component SysLogController. The manipulation leads to improper authorization. It is possible to initiate the attack remotely. The exploit is publicly...
CVE-2025-10084
CVE-2025-10084 affects elunez eladmin up to version 2.7, targeting the SysLogController function queryErrorLogDetail in the file /api/logs/error/1. The issue enables improper authorization and can be exploited remotely; the exploit is publicly available. Several sources corroborate the vulnerabil...
An Ethically Grounded LLM-Based Approach to Insider Threat Synthesis and Detection
Insider threats are a growing organizational problem due to the complexity of identifying their technical and behavioral elements. A large research body is dedicated to the study of insider threats from technological, psychological, and educational perspectives. However, research in this domain h...
Linux Distros Unpatched Vulnerability : CVE-2024-9026
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through...
Linux Distros Unpatched Vulnerability : CVE-2022-38725
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause a Denial of Service via crafted syslog inp...
Linux Distros Unpatched Vulnerability : CVE-2024-47619
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - syslog-ng is an enhanced log daemo. Prior to version 4.8.2, tlswildcardmatch matches on certificates such as foo..bar although that is not allowed. It is also...
Solaris 10 (i386): 146574-03
SunOS 5.10: SunOS 5.10x86: syslogd patch. Date this patch was last updated by Sun : Jul/14/25 %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid255251; scriptversion"1.1";...
CVE-2025-7051
On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...
CVE-2025-7051
On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...
CVE-2025-7051
On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...
CVE-2025-7051 N-central Syslog Configuration Insecure Direct Object Reference
On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2...
CVE-2025-7051
CVE-2025-7051 concerns N-able N-Central. Affected: N-Central deployments prior to 2025.2. Describe vulnerability: an authenticated user can read, write, and modify syslog configurations across customers on an N-Central server. This is an insecure direct object access-like issue enabling cross-ten...