JanelaRAT: a financial threat targeting users in Latin America

Background JanelaRAT is a malware family that takes its name from the Portuguese word "janela" which means "window". JanelaRAT looks for financial and cryptocurrency data from specific banks and financial institutions in the Latin America region. JanelaRAT is a modified variant of BX RAT that has...

EUVD-2018-8604

Malware in sbrugna...

EUVD-2021-29081

Malicious code in bioql PyPI...

CVE-2021-42095

Xshell before 7.0.0.76 allows attackers to cause a crash by triggering rapid changes to the title bar...

NetSarang Xshell has an unspecified vulnerability

NetSarang Xshell is an ssh client from NetSarang. NetSarang Xshell 7.0.0.76 previously contained a security vulnerability that could be exploited by an attacker to cause a crash by triggering a quick change in the title bar...

CVE-2021-42095

Xshell before 7.0.0.76 allows attackers to cause a crash by triggering rapid changes to the title bar...

CVE-2021-42095

Xshell before 7.0.0.76 allows attackers to cause a crash by triggering rapid changes to the title bar...

Design/Logic Flaw

Xshell before 7.0.0.76 allows attackers to cause a crash by triggering rapid changes to the title bar...

CVE-2021-42095

Xshell before 7.0.0.76 allows attackers to cause a crash by triggering rapid changes to the title bar...

CVE-2021-42095

NetSarang Xshell is affected up to version 7.0.0.76. The CVE-2021-42095 issue arises from rapid changes to the title bar, which can cause the application to crash. The connected documents confirm the affected software and the crash outcome, but do not provide explicit exploitation details beyond ...

NetSarang Xshell 安全漏洞

NetSarang Xshell is an ssh client from NetSarang. NetSarang Xshell 7.0.0.76 previously contained a security vulnerability that could be exploited by an attacker to cause a crash by triggering a quick change in the title bar...

CVE-2018-16804

An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request...

Cross site request forgery (csrf)

An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request...

CVE-2018-16804

An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request...

CVE-2018-16804

An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request...

Microsoft Internet Explorer 6.0 Pop-up Window Title Bar Spoofing Weakness

No description provided by source. source: http://www.securityfocus.com/bid/12602/info Internet Explorer is reported prone to a pop-up window title bar spoofing weakness. The weakness is reported to exist due to a flaw that manifests in script-initiated pop-up windows. This issue may be leveraged...

Celestial Software AbsoluteTelnet 2.0/2.11 Title Bar Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6785/info A buffer overflow vulnerability was reported for AbsoluteTelnet. The vulnerability exists due to insufficient bounds checking performed when setting the title bar of the client. An attacker can exploit this...

CVE-2012-1066

Cross-site scripting XSS vulnerability in the template module in SmartyCMS 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the title bar...

Cross site scripting

Cross-site scripting XSS vulnerability in the template module in SmartyCMS 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the title bar...

CVE-2012-1066

Cross-site scripting XSS vulnerability in the template module in SmartyCMS 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the title bar...