Lucene search
K

28 matches found

Hacker One
Hacker One
added 2026/05/08 6:18 p.m.22 views

Liberapay: Liberapay member team twitter account broken Link Hijacking via Expired Twitter Account Link

The profile of a Liberapay team member contained a link to an expired Twitter account, creating a broken link hijacking vulnerability. The expired Twitter account link was displayed on the member's Liberapay profile and donation page, falsely confirming to donors that the account was legitimate a...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2013-2264

Malware in sbrugna...

2.6CVSS6.4AI score0.01338EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 12:59 p.m.5 views

CVE-2018-20555

The Design Chemical Social Network Tabs plugin 1.7.1 for WordPress allows remote attackers to discover Twitter accesstoken, accesstokensecret, consumerkey, and consumersecret values by reading the dcwptwitter.php source code. This leads to Twitter account takeover...

9.8CVSS7.1AI score0.10401EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 a.m.5 views

CVE-2013-2318

The Content Provider in the MovatwiTouch application before 1.793 and MovatwiTouch Paid application before 1.793 for Android does not properly restrict access to authorization information, which allows attackers to hijack Twitter accounts via a crafted application...

2.6CVSS6.8AI score0.01338EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/15 6:0 a.m.24 views

CVE-2024-3631 HL Twitter <= 2014.1.18 - Unlink Twitter Account via CSRF

The HL Twitter WordPress plugin through 2014.1.18 does not have CSRF check when unlinking twitter accounts, which could allow attackers to make logged in admins perform such actions via a CSRF attack...

6.6AI score0.00211EPSS
Exploits2References1
Malwarebytes
Malwarebytes
added 2021/05/26 12:42 p.m.42 views

How to delete your Twitter account: the deactivation process

You may decide to delete your Twitter account, because social media isn’t for everyone. Perhaps you set up an account to see what the big deal is. Maybe you wanted to hang out with friends but you’re all moving to a new platform. It’s possible the service just isn’t very good and filled with trol...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2020/08/23 12:30 p.m.71 views

Intel Owl - Analyze Files, Domains, IPs In Multiple Ways From A Single API At Scale

Do you want to get threatintelligence data about a file, an IP or a domain? Do you want to get this kind of data from multiple sources at the same time using a single API request? You are in the right place! This application is built to scale out and to speed up the retrieval of threat info. It c...

7.3AI score
Exploits0References16
Krebs on Security
Krebs on Security
added 2020/03/23 8:17 p.m.50 views

Who’s Behind the ‘Web Listings’ Mail Scam?

In December 2018, KrebsOnSecurity looked at how dozens of U.S. political campaigns, cities and towns had paid a shady company called Web Listings Inc. after receiving what looked like a bill for search engine optimization SEO services rendered on behalf of their domain names. The story concluded...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2019/09/05 9:4 a.m.1 views

Twitter temporarily disables 'Tweeting via SMS' after CEO gets hacked

Twitter today finally decided to temporarily disable a feature, called 'Tweeting via SMS,' after it was abused by a hacking group to compromise Twitter CEO Jack Dorsey last week and sent a series of racist and offensive tweets to Dorsey's followers. Dorsey's Twitter account was compromised last...

6.7AI score
Exploits0
Cvelist
Cvelist
added 2019/03/18 3:32 p.m.22 views

CVE-2018-20555

The Design Chemical Social Network Tabs plugin 1.7.1 for WordPress allows remote attackers to discover Twitter accesstoken, accesstokensecret, consumerkey, and consumersecret values by reading the dcwptwitter.php source code. This leads to Twitter account takeover...

9.6AI score0.10401EPSS
Exploits1References3
Malwarebytes
Malwarebytes
added 2019/03/04 6:3 p.m.72 views

A week in security (February 25 – March 3)

Last week, we delved into the realm of K-12 schools and security, explored the world of compromised websites and Golang bruteforcers, and examined the possible realms of pay for privacy. We also looked at identity management solutions, Google’s Universal Read Gadget, and did the deepest of dives...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2019/01/04 4:23 p.m.16 views

Wide-Ranging German Doxxing Incident Hits Hundreds of Politicians

Hundreds of German politicians, including Chancellor Angela Merkel, have been doxxed in a puzzling incident, with their private information and political documents dumped online. At least one local reporter is claiming the information is explosive. According to a report from German public...

1.2AI score
Exploits0References7
Kitploit
Kitploit
added 2018/09/03 9:20 p.m.80 views

Leaked? - A Checking Tool For Hash Codes And Passwords Leaked

Leaked? is A Checking tool for Hash codes and Passwords leaked, use API from @webtobesocial. Leaked? can work in any OS if they have support Python 3 Features Check passwords leaked Check hash code leaked Exit About Author Install and Run in Linux sudo apt update && apt install python3 python3-pi...

7.5AI score
Exploits0References1
Krebs on Security
Krebs on Security
added 2017/12/04 5:39 a.m.84 views

Hacked Password Service Leakbase Goes Dark

Leakbase, a Web site that indexed and sold access to billions of usernames and passwords stolen in some of the world largest data breaches, has closed up shop. A source close to the matter says the service was taken down in a law enforcement sting that may be tied to the Dutch police raid of the...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/11/06 6:0 p.m.27 views

A week in security (October 30 – November 5)

Last week on our blog, we told you what to expect at the upcoming Irisscon security conference in Dublin. We gave you a quick introduction into the why and how of analyzing malware based on their API calls. And we issued a warning about some lesser-known cybercrimes. Plus we explained why emergin...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2014/06/25 1:28 a.m.46 views

BBC News iOS App Not Hacked, Breaking News Push Messages Sent in Error

If you are one of the users of the BBC News iPhone app, then you might have receive a strange message as a breaking news notification earlier this morning. The message was sent on two separate time durations. First the message reads: "NYPD Twitter campaign 'backfires' after hashtag hijacked," the...

6.7AI score
Exploits0
Kitploit
Kitploit
added 2013/12/27 1:1 a.m.19 views

[Avivore] The Twitter-searching Data Miner

Avivore is a Python-based tool that searches Twitter for keywords and then parses any tweets that are found. When parsing, it looks for the following sort of data: Phone numbers in NPA-NXX format ex: 604-555-1212 IPv4 addresses 127.0.0.1 Blackberry PINs ABCDEF12 It presently uses a SQLite backend...

7.2AI score
Exploits0References2
The Hacker News
The Hacker News
added 2013/09/30 6:26 a.m.10 views

US news agency GlobalPost's twitter and website hacked by Syrian Electronic Army

In a series of high profile hacks, 'Syrian Electronic Army SEA' just a few minutes before took control twitter account and website of 'GlobalPost', a US based news agency. 'Syrian Electronic Army is an organized hacking group loyal to the Syrian President Bashar al-Assad and known for their high...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2012/10/17 2:24 p.m.8 views

Rock band 'Garbage' twitter account Hacked to spam monetized link

Official Twitter account of Rock band 'Garbage' has been compromised and hacker is posting Spam tweets and links using adf.ly, which is a url shortener service that pays on clicks. Hacked twitter account hack around 55,563 Followers. Hacker can post malicious links also, but in this case we can s...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2012/08/06 9:21 a.m.7 views

Fake Syria News Posted from Hacked Reuters blog and Twitter account

On Friday, Reuters blog platform was hacked with false posts and on Saturday, the @ReutersTech account on Twitter was taken over and renamed @TechMe. False tweets were sent before it was taken down. The first attack came Friday after Syrian hackers loyal to President Bashar al-Assad allegedly...

6.8AI score
Exploits0
Rows per page
Query Builder