Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Huntr
Huntradded 2022/09/18 8:54 a.m.20 views

Cookie is persisting in the browser which leads to Session Fixation

Description After logging in and logging out, the application continues to use the preauthentication cookies. The cookies are same after closing the browser and after password change .And also same cookies are reassigning for another user's login which can leads to session fixation. Proof of...

7.5CVSS0.9AI score0.00357EPSS
Exploits1References1
Veracode
Veracodeadded 2018/06/08 4:35 a.m.14 views

Malicious Package

discordi.js is a malicious package. Upon installation, the package attempts to discover a user's discord login credentials and sends them to pastebin...

7.3CVSS7AI score0.00199EPSS
Exploits0References1Affected Software1
myhack58
myhack58added 2016/08/29 12:0 a.m.13 views

Web Security testing common logic vulnerability analysis(combat article-the vulnerability warning-the black bar safety net

Logic vulnerabilities mining has always been Safety tested in the“timeless”topic. Compared toSQL injection, withXSSthe vulnerability of traditional security holes, and now the attacker is more inclined to use the business logic layer of the application security issues, such issues tend to harm th...

0.5AI score
Exploits0
Rows per page
Query Builder