Lucene search
K

46 matches found

OSV
OSV
added 2025/11/11 12:41 a.m.2 views

MAL-2025-71104 Malicious code in thick-harlequin-panda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f65fce271b408d5f9a8895fa6c3c10c67eb67a5d95e75eb0cd5d60279dadd9a6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 12:41 a.m.8 views

Malicious code in thick-blue-barracuda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51833b183cecfb67e44f4954fcc38ce7f3186a497b732fa67f1615ba597052f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/11 12:41 a.m.5 views

EUVD-2025-51543

Malicious code in thick-yellow-rooster npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/11 12:41 a.m.3 views

EUVD-2025-51547

Malicious code in thick-blush-hyena npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/11 12:41 a.m.7 views

MAL-2025-71101 Malicious code in thick-blue-barracuda (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 51833b183cecfb67e44f4954fcc38ce7f3186a497b732fa67f1615ba597052f7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/10 6:2 p.m.2 views

Malicious code in thick_wren_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 44f8d1600f4df85dee5e79d2ef50740f02eb914aec1972c3126cc32924d705f4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:0 a.m.8 views

CVE-2024-46505

Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...

9.1CVSS7.3AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2025/01/09 8:15 p.m.11 views

CVE-2024-46505

Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...

9.1CVSS0.00288EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/09 12:0 a.m.18 views

CVE-2024-46505

Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...

0.00288EPSS
Exploits0References1
CVE
CVE
added 2025/01/09 12:0 a.m.67 views

CVE-2024-46505

CVE-2024-46505 affects Infoblox BloxOne v2.4. The vulnerability is described as a business logic flaw arising from thick-client vulnerabilities in the product. The CVSS v3.1 vector indicates high impact with critical severity (Network attack, no privileges, no user interaction required for exploi...

9.1CVSS7.5AI score0.00288EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/09 12:0 a.m.6 views

CVE-2024-46505

Infoblox BloxOne v2.4 was discovered to contain a business logic flaw due to thick client vulnerabilities...

9.3AI score0.00288EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.5 views

PT-2025-2738 · Infoblox · Infoblox Bloxone

Name of the Vulnerable Software and Affected Versions: Infoblox BloxOne version 2.4 Description: A business logic flaw was discovered due to thick client vulnerabilities. Recommendations: For Infoblox BloxOne version 2.4, consider restricting access to the thick client until a patch is available...

9.1CVSS7AI score0.00288EPSS
Exploits0References4
NVD
NVD
added 2023/11/26 10:15 p.m.23 views

CVE-2023-49312

Precision Bridge PrecisionBridge.exe aka the thick client before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address...

9.1CVSS0.00676EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/11/26 12:0 a.m.27 views

CVE-2023-49312

Precision Bridge PrecisionBridge.exe aka the thick client before 7.3.21 allows an integrity violation in which the same license key is used on multiple systems, via vectors involving a Process Hacker memory dump, error message inspection, and modification of a MAC address...

9.2AI score0.00676EPSS
Exploits1References2
Packet Storm
Packet Storm
added 2023/06/26 12:0 a.m.226 views

NCH Express Invoice 7.25 Cleartext Password

Exploit Title: NCH Express Invoice - Clear Text Password Storage and Account Takeover Google Dork:: intitle:ExpressInvoice - Login Date: 07/Apr/2020 Exploit Author: Tejas Nitin Pingulkar https://cvewalkthrough.com/ Vendor Homepage: https://www.nchsoftware.com/ Software Link:...

7.8CVSS7.1AI score0.00999EPSS
Exploits3
MSRC
MSRC
added 2022/06/24 7:0 a.m.12 views

A Man of Action: Meet Callum Carney

Hidden Talents : He was a competitive swimmer for many years. Instrument of Choice : His fingers were made for the keyboard, but he used to play the trumpet. 5 pieces of entertainment for the rest of his life : The Office, World War Z, The Matrix, Breaking Bad, The Thick of It...

1.8AI score
Exploits0
MSRC
MSRC
added 2022/06/24 7:0 a.m.10 views

A Man of Action: Meet Callum Carney

Hidden Talents : He was a competitive swimmer for many years. Instrument of Choice : His fingers were made for the keyboard, but he used to play the trumpet. 5 pieces of entertainment for the rest of his life : The Office, World War Z, The Matrix, Breaking Bad, The Thick of It...

7AI score
Exploits0
Kitploit
Kitploit
added 2022/06/02 12:30 p.m.22 views

MITM_Intercept - A Little Bit Less Hackish Way To Intercept And Modify non-HTTP Protocols Through Burp And Others

A little bit less hackish way to intercept and modify non-HTTP protocols through Burp and others with SSL and TLS interception support. This tool is for researchers and applicative penetration testers that perform thick clients security assesments. An improved version of the fantastic mitmrelay...

7.1AI score
Exploits0References7
0day.today
0day.today
added 2017/10/04 12:0 a.m.61 views

ERS Data System 1.8.1 - Java Deserialization Exploit

Exploit for windows platform in category remote exploits Exploit Title: ERS Data System 1.8.1 Deserialize Vulnerability Google Dork: N/A Date: 9/21/2017 Exploit Author: West Shepherd Vendor Homepage: http://www.ersdata.com Software Link: www.ersdata.com/downloads/ErsSetup.exe Version: 1.8.1.0...

7.5CVSS9.2AI score0.08303EPSS
Exploits5
Packet Storm
Packet Storm
added 2017/10/03 12:0 a.m.47 views

ERS Data System 1.8.1 Java Deserialization

Exploit Title: ERS Data System 1.8.1 Deserialize Vulnerability Google Dork: N/A Date: 9/21/2017 Exploit Author: West Shepherd Vendor Homepage: http://www.ersdata.com Software Link: www.ersdata.com/downloads/ErsSetup.exe Version: 1.8.1.0 Tested on: Windows 7 x86 CVE : CVE-2017-14702 Description: E...

0.2AI score0.08303EPSS
Exploits5
Rows per page
Query Builder