CVE-2026-34951 Reflected XSS in footer.php in Workbench Allows Attackers to Hijack Authenticated Sessions

Workbench is a suite of tools for administrators and developers to interact with Salesforce.com organizations via the Force.com APIs. Prior to 65.0.0, Workbench contains a reflected cross-site scripting vulnerability via the footerScripts parameter, which does not sanitize user-supplied input...

EUVD-2012-5451

Malware in sbrugna...

EUVD-2015-4398

Malware in sbrugna...

EUVD-2010-1575

Malware in sbrugna...

EUVD-2013-1919

Malware in sbrugna...

EUVD-2008-1317

Malware in sbrugna...

EUVD-2012-2088

Malware in sbrugna...

CVE-2013-2687

Stack-based buffer overflow in the bpedecompress function in 1 BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 and 2 QNX Momentics Tool Suite through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service application crash or possibly execute...

CloudRecon - Finding assets from certificates

CloudRecon Finding assets from certificates! Scan the web! Tool presented @DEFCON 31 Install You must have CGO enabled, and may have to install gcc to run CloudRecon sudo apt install gcc go install github.com/g0ldencybersec/CloudRecon@latest Description CloudRecon CloudRecon is a suite of tools f...

DRUPAL-CONTRIB-2021-015

Chaos tool suite ctools module provides a number of APIs and extensions for Drupal, its 8.x-3.x branch is a start from scratch to evaluate the features of ctools that didn't make it into Drupal Core 8.0.x and port them. The module doesn't sufficiently handle block access control on its EntityView...

DRUPAL-CONTRIB-2021-009

Chaos tool suite ctools module provides a number of APIs and extensions for Drupal, it's 8.x-3.x branch is a start from scratch to evaluate the features of ctools that didn't make it into Drupal Core 8.0.x and port them. The module doesn't sufficiently handle access control on its EntityView...

Shadow has an unspecified vulnerability (CNVD-2016-05634)

Shadow is a suite of tools for maintaining Debian systems. An unspecified vulnerability exists in Shadow. An attacker could exploit this vulnerability to obtain sensitive information and execute arbitrary code on the affected application. A denial of service is also possible...

Open redirect

Open redirect vulnerability in the Chaos tool suite ctools module before 6.x-1.12 and 7.x-1.x before 7.x-1.7 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors involving processing confirmation delete pages...

CVE-2015-4398

Open redirect vulnerability in the Chaos tool suite ctools module before 6.x-1.12 and 7.x-1.x before 7.x-1.7 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors involving processing confirmation delete pages...

CVE-2015-4398

CVE-2015-4398 is an open redirect vulnerability in the Chaos Tool Suite (ctools) Drupal module. Affected versions are CTools 6.x-1.x prior to 6.x-1.12 and 7.x-1.x prior to 7.x-1.7. The root cause is improper sanitization of URLs processed on confirmation delete pages, enabling remote attackers to...

CVE-2015-4375

The Chaos tool suite ctools module 7.x-1.x before 7.x-1.7 for Drupal allows remote attackers to obtain sensitive node titles via 1 an autocomplete search on custom entities without an access query tag or 2 leveraging knowledge of the ID of an entity...

CVE-2015-4375

The Chaos tool suite ctools module 7.x-1.x before 7.x-1.7 for Drupal allows remote attackers to obtain sensitive node titles via 1 an autocomplete search on custom entities without an access query tag or 2 leveraging knowledge of the ID of an entity...

CVE-2015-4375

The CVE-2015-4375 vulnerability affects the Chaos tool suite (ctools) module for Drupal (7.x-1.x prior to 7.x-1.7 and 6.x-1.x prior to 6.x-1.12). It enables remote attackers to obtain sensitive node titles via two attack paths: (1) an autocomplete search on custom entities without an access query...

Drupal Chaos tool suite module open redirect vulnerability

Drupal is a developmental CMF Content Management Framework written in the PHP language. An open redirection vulnerability exists in the Drupal Chaos tool suite module. An attacker can exploit the vulnerability to be redirected to an attacker-controlled site, which may aid in phishing attacks...

Drupal Chaos tool suite module access bypass vulnerability

Drupal is a developmental CMF Content Management Framework written in the PHP language. An access bypass vulnerability exists in the Drupal Chaos tool suite module. An attacker could exploit the vulnerability to bypass certain security restrictions and gain unauthorized access...