Lucene search
K

26 matches found

NVD
NVD
added 2026/06/14 9:16 p.m.11 views

CVE-2026-12186

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS0.01966EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/06/14 8:45 p.m.24 views

CVE-2026-12186 GL.iNet GL-MT3000 Tor Proxy Service Configuration tor replace_country command injection

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS0.01966EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/14 8:45 p.m.12 views

EUVD-2026-36665

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS7.7AI score0.01966EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/06/14 8:45 p.m.6 views

CVE-2026-12186 GL.iNet GL-MT3000 Tor Proxy Service Configuration tor replace_country command injection

A weakness has been identified in GL.iNet GL-MT3000 up to 4.4.5. Affected is the function replacecountry in the library /usr/lib/oui-httpd/rpc/tor of the component Tor Proxy Service Configuration Handler. This manipulation causes command injection. The attack can be initiated remotely. The exploi...

9CVSS7.6AI score0.01966EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/14 12:0 a.m.17 views

PT-2026-49144

Name of the Vulnerable Software and Affected Versions GL.iNet GL-MT3000 versions prior to 4.7 Description A command injection flaw exists in the Tor Proxy Service Configuration Handler. The issue is located within the replace country function in the /usr/lib/oui-httpd/rpc/tor library, allowing a...

9CVSS8.4AI score0.01966EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-8669

Malicious code in bioql PyPI...

5.3CVSS6.2AI score0.01949EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 7:9 p.m.8 views

CVE-2021-21323

Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests that bypassed the Brave Tor proxy. Users with adblocking enabled would leak DNS requests from Tor...

5.3CVSS6.6AI score0.01949EPSS
Exploits0References1
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/10/11 3:0 p.m.36 views

Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors

DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center MSTIC first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on US and Israeli defense technolog...

0.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/10/11 3:0 p.m.75 views

Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors

DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center MSTIC first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on US and Israeli defense technolog...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/02 1:1 p.m.39 views

New Mirai-Inspired Botnet Could Be Using Your KGUARD DVRs in Cyber Attacks

Cybersecurity researchers on Thursday revealed details about a new Mirai-inspired botnet called "miraiptea" that leverages an undisclosed vulnerability in digital video recorders DVR provided by KGUARD to propagate and carry out distributed denial-of-service DDoS attacks. Chinese security firm...

2.4AI score
Exploits0
NVD
NVD
added 2021/02/23 11:15 p.m.17 views

CVE-2021-21323

Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests that bypassed the Brave Tor proxy. Users with adblocking enabled would leak DNS requests from Tor...

5.3CVSS0.01949EPSS
Exploits0References5
Prion
Prion
added 2021/02/23 11:15 p.m.40 views

Design/Logic Flaw

Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests that bypassed the Brave Tor proxy. Users with adblocking enabled would leak DNS requests from Tor...

4.3CVSS6.1AI score0.01949EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2021/02/23 10:45 p.m.18 views

CVE-2021-21323 Regression in DNS leakage from Tor windows

Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests that bypassed the Brave Tor proxy. Users with adblocking enabled would leak DNS requests from Tor...

4.3CVSS6.1AI score0.01949EPSS
Exploits0References5
CVE
CVE
added 2021/02/23 10:45 p.m.78 views

CVE-2021-21323

Brave Browser vulnerability CVE-2021-21323 involves a DNS leak tied to the CNAME-based adblocking feature. Affected: Brave Desktop/Brave browser versions 1.17.73–1.20.103. Root cause: the CNAME adblocking flow could initiate DNS requests that bypassed the Brave Tor proxy, causing DNS traffic from...

5.3CVSS5.3AI score0.01949EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2021/02/23 12:0 a.m.7 views

Brave Information Disclosure Vulnerability

Francois Marier Brave Core is a GlobalFrancois Marier open source application providing a set of changes, APIs and scripts for customizing Chromium to create Brave. A security vulnerability exists in Brave versions 1.17.73-1.20.103, which stems from a CNAME adblocking accidentally triggering a DN...

5.3CVSS6.6AI score0.01949EPSS
Exploits0References6
Kitploit
Kitploit
added 2021/01/11 11:30 a.m.90 views

Wprecon - A Vulnerability Recognition Tool In CMS Wordpress, 100% Developed In Go

Hello! Welcome. Wprecon Wordpress Recon, is a vulnerability recognition tool in CMS Wordpress, 100% developed in Go. Notice: Why is the project out of updates these days ?! What happens is that I am doing the vulnerability scanner. Branch Dev Compile and Install Features Random Agent Detection WA...

7.2AI score
Exploits0References3
The Hacker News
The Hacker News
added 2020/12/16 2:26 p.m.36 views

Ransomware Attackers Using SystemBC Malware With RAT and Tor Proxy

Cybercriminals are increasingly outsourcing the task of deploying ransomware to affiliates using commodity malware and attack tools, according to new research. In a new analysis published by Sophos today and shared with The Hacker News, recent deployments of Ryuk and Egregor ransomware have...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2020/03/25 8:30 p.m.173 views

Katana - A Python Tool For Google Hacking

Katana-ds ds for dorkscanner is a simple python tool that automates Google Hacking/Dorking and support Tor It becomes more powerful in combination with GHDB Installation : Use the package manager pip to install requirements cd Katana python3 pip install -r requirments python3 katana-ds.py Tested...

7.1AI score
Exploits0References4
HackRead
HackRead
added 2018/01/31 12:2 a.m.59 views

Tor Proxy Used By Cybercriminals To Initiate Bitcoin Theft

By Waqas Tor proxy owners are replacing Bitcoin payment addresses to divert payments This is a post from HackRead.com Read the original post: Tor Proxy Used By Cybercriminals To Initiate Bitcoin Theft...

6.9AI score
Exploits0
Kitploit
Kitploit
added 2017/07/10 2:30 p.m.58 views

LFISuite - Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

LFI Suite is a totally automatic tool able to scan and exploit Local File Inclusion vulnerabilities using many different methods of attack, listed in the section Features. Features Works with Windows, Linux and OS X Automatic Configuration Automatic Update Provides 8 different Local File Inclusio...

7.4AI score
Exploits0References2
Rows per page
Query Builder