Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:17 a.m.4 views

CVE-2019-18850

TrevorC2 v1.1/v1.2 fails to prevent fingerprinting primarily via a discrepancy between response headers when responding to different HTTP methods, also via predictible responses when accessing and interacting with the "SITEPATHQUERY"...

7.5CVSS6.8AI score0.00364EPSS
Exploits0References1
pentestit
pentestitadded 2019/12/06 11:39 p.m.90 views

UPDATE: TrevorC2 version 1.3

TrevorC2 version 1.3 was just released yesterday! I briefly mentioned about TrevorC2 in my older post titled as the List of Open Source C2 Post-Exploitation Frameworks. Infact, there have been two updates which I missed blogging about and hence, this post will cover those changes as well. What is...

1.5AI score
Exploits0
NVD
NVDadded 2019/12/04 1:15 p.m.7 views

CVE-2019-18850

TrevorC2 v1.1/v1.2 fails to prevent fingerprinting primarily via a discrepancy between response headers when responding to different HTTP methods, also via predictible responses when accessing and interacting with the "SITEPATHQUERY"...

7.5CVSS7.5AI score0.00364EPSS
Exploits0References2
OSV
OSVadded 2019/12/04 1:15 p.m.14 views

CVE-2019-18850

TrevorC2 v1.1/v1.2 fails to prevent fingerprinting primarily via a discrepancy between response headers when responding to different HTTP methods, also via predictible responses when accessing and interacting with the "SITEPATHQUERY"...

7.5CVSS6.8AI score
Exploits0References2
Prion
Prionadded 2019/12/04 1:15 p.m.9 views

Design/Logic Flaw

TrevorC2 v1.1/v1.2 fails to prevent fingerprinting primarily via a discrepancy between response headers when responding to different HTTP methods, also via predictible responses when accessing and interacting with the "SITEPATHQUERY"...

5CVSS7.5AI score0.00364EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2019/12/04 12:42 p.m.12 views

CVE-2019-18850

TrevorC2 v1.1/v1.2 fails to prevent fingerprinting primarily via a discrepancy between response headers when responding to different HTTP methods, also via predictible responses when accessing and interacting with the "SITEPATHQUERY"...

7.5AI score0.00364EPSS
Exploits0References2
CVE
CVEadded 2019/12/04 12:42 p.m.40 views

CVE-2019-18850

TrevorC2 v1.1/v1.2 is affected by a fingerprinting issue caused by a mismatch in response headers for different HTTP methods and by predictable responses when accessing SITE_PATH_QUERY. The CVE (CVE-2019-18850) is documented with both NVD and Red Hat entries, noting the risk of information disclo...

7.5CVSS7.4AI score0.00364EPSS
Exploits0References2Affected Software1
n0where
n0whereadded 2018/05/02 9:37 p.m.20 views

Command and Control via Legitimate Behavior over HTTP: TrevorC2

TrevorC2 is a client/server model for masking command and control through a normally browsable website. Detection becomes much harder as time intervals are different and does not use POST requests for data exfil. There are two components to TrevorC2 – the client and the server. The client can be...

Exploits0References1
Kitploit
Kitploitadded 2017/11/11 1:39 p.m.32 views

TrevorC2 - Command and Control via Legitimate Behavior over HTTP

TrevorC2 is a client/server model for masking command and control through a normally browsable website. Detection becomes much harder as time intervals are different and does not use POST requests for data exfil. There are two components to TrevorC2 - the client and the server. The client can be...

7.4AI score
Exploits0References1
Rows per page
Query Builder