Lucene search
K

80 matches found

Kitploit
Kitploit
added 2021/07/19 9:30 p.m.49 views

MANSPIDER - Spider Entire Networks For Juicy Files Sitting On SMB Shares. Search Filenames Or File Content - Regex Supported!

Crawl SMB shares for juicy information. File content searching + regex is supported! File types supported: PDF DOCX XLSX PPTX any text-based format and many more!! MAN-SPIDER will crawl every share on every target system. If provided creds don't work, it will fall back to "guest", then to a null...

7.2AI score
Exploits0References3
Veracode
Veracode
added 2021/03/30 4:15 a.m.26 views

Cross Site Scripting (XSS)

Moodle is vulnerable to cross-site scripting XSS. An attacker is able to inject and execute malicious script in a user's browser via Text-based feedback answers...

5.4CVSS5.6AI score0.01277EPSS
Exploits2References11Affected Software1
CNVD
CNVD
added 2021/03/19 12:0 a.m.7 views

Moodle cross-site scripting vulnerability (CNVD-2021-28733)

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. Moodle suffers from a cross-site scripting vulnerability that stems from Text-based feedback answers. No details of the vulnerability a...

5.4CVSS6AI score0.01277EPSS
Exploits2References1
NVD
NVD
added 2021/03/15 10:15 p.m.17 views

CVE-2021-20280

Text-based feedback answers required additional sanitizing to prevent stored XSS and blind SSRF risks in moodle before 3.10.2, 3.9.5, 3.8.8, 3.5.17...

5.4CVSS0.01277EPSS
Exploits2References6
CVE
CVE
added 2021/03/15 9:35 p.m.126 views

CVE-2021-20280

CVE-2021-20280 affects Moodle before versions 3.10.2, 3.9.5, 3.8.8, and 3.5.17. The issue is due to insufficient sanitization of text-based feedback answers, leading to stored XSS and blind SSRF risks. Several connected sources reiterate the same description and tie the vulnerability to moodle’s ...

5.4CVSS5.1AI score0.01277EPSS
Exploits2References6Affected Software1
CNNVD
CNNVD
added 2021/03/15 12:0 a.m.8 views

Moodle 跨站脚本漏洞

Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. Moodle suffers from a cross-site scripting vulnerability that stems from Text-based feedback answers. No details of the vulnerability a...

5.4CVSS5.1AI score0.01277EPSS
Exploits2References10
Hacker One
Hacker One
added 2020/12/27 3:21 a.m.54 views

h1-ctf: 12 Days of Hacky Holidays write-up, but as a text-based RPG?

The flags are - flag48104912-28b0-494a-9995-a203d1e261e7 - flagb7ebcb75-9100-4f91-8454-cfb9574459f7 - flagb705fb11-fb55-442f-847f-0931be82ed9a - flag972e7072-b1b6-4bf7-b825-a912d3fd38d6 - flag2e6f9bf8-fdbd-483b-8c18-bdf371b2b004 - flag18b130a7-3a79-4c70-b73b-7f23fa95d395 -...

0.1AI score
Exploits0
Citrix
Citrix
added 2020/11/09 12:0 a.m.6 views

Crash Reporter Utility for Citrix Virtual Apps and Desktops

About This Release This is an early technical preview release v1.0.0.2 of the Crash Reporter utility. This release has not been tested extensively and is not supported. Please send any feedback using the link in Contact Information section. Where to download ? Certain legacy Citrix tools are now...

7.4AI score
Exploits0
Fedora
Fedora
added 2020/07/03 1:19 a.m.35 views

[SECURITY] Fedora 32 Update: mutt-1.14.5-1.fc32

Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features like key bindings, keyboard macros, mail threading, regular expression searches and a powerful pattern matching language for selecting group...

5.9CVSS1AI score0.02288EPSS
Exploits0
Cvelist
Cvelist
added 2019/11/05 7:35 p.m.25 views

CVE-2019-1981 Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability

A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to...

5.8CVSS5.7AI score0.01042EPSS
Exploits0References1
Cisco
Cisco
added 2019/08/16 4:0 p.m.111 views

Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability

A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to...

5.8CVSS5.9AI score0.01042EPSS
Exploits0References1
Fedora
Fedora
added 2019/07/18 8:32 p.m.19 views

[SECURITY] Fedora 29 Update: mutt-1.12.0-1.fc29

Mutt is a small but very powerful text-based MIME mail client. Mutt is highly configurable, and is well suited to the mail power user with advanced features like key bindings, keyboard macros, mail threading, regular expression searches and a powerful pattern matching language for selecting group...

1AI score
Exploits0
Gitee
Gitee
added 2019/05/21 10:34 a.m.4 views

sshtron

This is a multiplayer Tron game accessible via SSH. The game is written in Go and uses the SSH protocol to allow multiple players to play together over a network. The game is designed to be played on a server, and players can connect to the server using SSH to play. The game uses a simple...

7AI score
Exploits0
Kitploit
Kitploit
added 2018/09/10 9:13 p.m.163 views

PacketWhisper - Stealthily Exfiltrate Data And Defeat Attribution Using DNS Queries And Text-Based Steganography

PacketWhisper - Stealthily Transfer Data & Defeat Attribution Using DNS Queries & Text-Based Steganography, without the need for attacker-controlled Name Servers or domains; Evade DLP/MLS Devices; Defeat Data- & DNS Name Server Whitelisting Controls. Convert any file type e.g. executables, Office...

6.8AI score
Exploits0References3
n0where
n0where
added 2018/09/04 12:44 a.m.26 views

PacketWhisper Exfiltration Toolset

PacketWhisper – Stealthily Transfer Data & Defeat Attribution Using DNS Queries & Text-Based Steganography, without the need for attacker-controlled Name Servers or domains; Evade DLP/MLS Devices; Defeat Data- & DNS Name Server Whitelisting Controls. Convert any file type e.g. executables, Office...

0.2AI score
Exploits0References3
Fedora
Fedora
added 2017/12/26 4:32 p.m.23 views

[SECURITY] Fedora 26 Update: lynx-2.8.9-0.20.dev16.fc26

Lynx is a text-based Web browser. Lynx does not display any images, but it does support frames, tables, and most other HTML tags. One advantage Lynx has over graphical browsers is speed; Lynx starts and exits quickly and swiftly displays web pages...

5.3CVSS1.3AI score0.01705EPSS
Exploits0
Krebs on Security
Krebs on Security
added 2017/08/28 2:46 a.m.66 views

Is Your Mobile Carrier Your Weakest Link?

More online services than ever now offer two-step authentication -- requiring customers to complete a login using their phone or other mobile device after supplying a username and password. But with so many services relying on your mobile for that second factor, there has never been more riding o...

7.2AI score
Exploits0
Fedora
Fedora
added 2017/02/14 9:26 p.m.19 views

[SECURITY] Fedora 25 Update: lynx-2.8.9-0.14.dev11.fc25

Lynx is a text-based Web browser. Lynx does not display any images, but it does support frames, tables, and most other HTML tags. One advantage Lynx has over graphical browsers is speed; Lynx starts and exits quickly and swiftly displays web pages...

7.5CVSS1.3AI score0.01987EPSS
Exploits0
Kitploit
Kitploit
added 2015/05/14 11:23 p.m.18 views

Bacula - Network Backup Tool for Linux, Unix, Mac, and Windows

Bacula is a set of computer programs that permits the system administrator to manage backup, recovery, and verification of computer data across a network of computers of different kinds. Bacula can also run entirely upon a single computer and can backup to various types of media, including tape a...

7.3AI score
Exploits0
0day.today
0day.today
added 2015/03/07 12:0 a.m.89 views

Ultimate PHP Board (UPB) 2.2.7 Cross Site Scripting Vulnerability

Ultimate PHP Board UPB version 2.2.7 suffers from a cross site scripting vulnerability. Exploit Title : Ultimate PHP Board UPB 2.2.7 Cross Site Scripting Vulnerability CVE : CVE-2015-2217 Date : 4 March 2015 Exploit Author : CWH Underground Discovered By : ZeQ3uL Site : www.2600.in.th Vendor...

4.3CVSS6.3AI score0.01892EPSS
Exploits3
Rows per page
Query Builder