31 matches found
EUVD-2017-8870
Malware in sbrugna...
EUVD-2019-4952
Malware in sbrugna...
EUVD-2019-4953
Malware in sbrugna...
CVE-2019-13489
Trape through 2019-05-08 has SQL injection via the data2 variable in core/db.py, as demonstrated by the /bs t parameter...
CVE-2019-13488
A cross-site scripting XSS vulnerability in static/js/trape.js in Trape through 2019-05-08 allows remote attackers to inject arbitrary web script or HTML via the country, query, or refer parameter to the /register URI, because the jQuery prepend method is used...
Trape SQL Injection Vulnerability (CNVD-2019-22230)
Trape is a suite of open source Internet tracking and identification tools. The tool is capable of remotely identifying sessions and simulating phishing attacks. A SQL injection vulnerability exists in Trape 2019-05-08 and prior versions. The vulnerability stems from a lack of validation of...
Trape Cross-Site Scripting Vulnerability (CNVD-2019-22229)
Trape is a suite of open source Internet tracking and identification tools. The tool is capable of remotely identifying sessions and simulating phishing attacks. A cross-site scripting vulnerability exists in the static/js/trape.js file in Trape 2019-05-08 and earlier versions. The vulnerability...
CVE-2019-13489
Trape through 2019-05-08 has SQL injection via the data2 variable in core/db.py, as demonstrated by the /bs t parameter...
CVE-2019-13489
Trape through 2019-05-08 has SQL injection via the data2 variable in core/db.py, as demonstrated by the /bs t parameter...
CVE-2019-13488
A cross-site scripting XSS vulnerability in static/js/trape.js in Trape through 2019-05-08 allows remote attackers to inject arbitrary web script or HTML via the country, query, or refer parameter to the /register URI, because the jQuery prepend method is used...
CVE-2019-13488
A cross-site scripting XSS vulnerability in static/js/trape.js in Trape through 2019-05-08 allows remote attackers to inject arbitrary web script or HTML via the country, query, or refer parameter to the /register URI, because the jQuery prepend method is used...
Sql injection
Trape through 2019-05-08 has SQL injection via the data2 variable in core/db.py, as demonstrated by the /bs t parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in static/js/trape.js in Trape through 2019-05-08 allows remote attackers to inject arbitrary web script or HTML via the country, query, or refer parameter to the /register URI, because the jQuery prepend method is used...
CVE-2019-13489
Trape through 2019-05-08 has SQL injection via the data2 variable in core/db.py, as demonstrated by the /bs t parameter...
CVE-2019-13489
Trape (up to 2019-05-08) contains an SQL injection in the data[2] variable handled by core/db.py, allowing potentially arbitrary SQL execution. The root cause cited (CNVD) is lack of validation of externally entered SQL statements in database-based applications. No remediation details are provide...
CVE-2019-13488
CVE-2019-13488 affects Trape up to 2019-05-08, with an XSS in static/js/trape.js. The vulnerability allows remote injection of script/HTML via the country, query, or refer parameters to the /register URI because the jQuery prepend() method is used without proper sanitization. Affected component/f...
CVE-2019-13488
A cross-site scripting XSS vulnerability in static/js/trape.js in Trape through 2019-05-08 allows remote attackers to inject arbitrary web script or HTML via the country, query, or refer parameter to the /register URI, because the jQuery prepend method is used...
Trape v2.0 - People Tracker On The Internet: OSINT Analysis And Research Tool
Trape is a OSINT analysis and research tool, which allows people to track and execute intelligent social engineering attacks in real time. It was created with the aim of teaching the world how large Internet companies could obtain confidential information such as the status of sessions of their...
Track People on the Internet: trape
Trape is a OSINT analysis and research tool, which allows people to track and execute intelligent social engineering attacks in real time. It was created with the aim of teaching the world how large Internet companies could obtain confidential information such as the status of sessions of their...
Trape SQL Injection Vulnerability
Trape is a set of open source Internet tracking and identification tools. It is capable of remotely identifying sessions and simulating phishing attacks. A SQL injection vulnerability exists in versions of Trape prior to 2017-11-05. A remote attacker can exploit the vulnerability to execute SQL...