Fedora: Security Advisory (FEDORA-2024-112e897674)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 40 : python-virtualenv (2024-112e897674)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-112e897674 advisory. - Prevent command injection by quoting template strings in activation scripts Tenable has extracted the preceding description block directly from the Fedora...

Fedora: Security Advisory (FEDORA-2024-f7d6b76677)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : python-virtualenv (RHSA-2020:2081)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2081 advisory. - The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect...

PT-2024-9155

Name of the Vulnerable Software and Affected Versions: virtualenv versions prior to 20.26.6 Description: The issue is related to command injection through the activation scripts for a virtual environment in virtualenv. It is caused by the incorrect quoting of magic template strings when replacing...

RHSA-2020:2081 Red Hat Security Advisory: python-virtualenv security update

Bulletin has no description...

RHSA-2020:0851 Red Hat Security Advisory: python-virtualenv security update

Bulletin has no description...

RHSA-2022:5234 Red Hat Security Advisory: python-virtualenv security update

Bulletin has no description...

Oracle Linux 7 : python-virtualenv (ELSA-2020-2081)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-2081 advisory. - The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect...

ThunderCloud - Cloud Exploit Framework

Cloud Exploit Framework Usage python3 tc.py -h | | | | | / | | | | | | | | | | | | | | | | | | | ' | | | | ' \ / |/ \ '| | | |/ | | | |/ | | | | | | | || | | | | | | / | | || | | || | | | / || ||,|| ||,||| ||/ ,|,| usage: tc.py -h -ce COGNITOENDPOINT -reg REGION -accid AWSACCOUNTID...

SUSE CVE-2011-4617

virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/...

CentOS: Security Advisory for python-virtualenv (CESA-2022:5234)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

python security update

CentOS Errata and Security Advisory CESA-2022:5234 An update for python-virtualenv is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

[SECURITY] Fedora 36 Update: powerline-go-1.22.1-3.fc36

A Powerline like prompt for Bash, ZSH and Fish. - Shows some important details about the git/hg branch - Changes color if the last command exited with a failure code - If you're too deep into a directory tree, shortens the displayed path with an ellipsis - Shows the current Python virtualenv...

[SECURITY] Fedora 35 Update: powerline-go-1.22.1-2.fc35

A Powerline like prompt for Bash, ZSH and Fish. - Shows some important details about the git/hg branch - Changes color if the last command exited with a failure code - If you're too deep into a directory tree, shortens the displayed path with an ellipsis - Shows the current Python virtualenv...

Bypass-Url-Parser - Tool That Tests Many URL Bypasses To Reach A 40X Protected Page

Tool that tests MANY url bypasses to reach a 40X protected page. If you wonder why this code is nothing but a dirty curl wrapper, here's why: Most of the python requests do url/path/parameter encoding/decoding, and I hate this. If I submit raw chars, I want raw chars to be sent. If I send a weird...

[SECURITY] Fedora 36 Update: powerline-go-1.21.0-4.fc36

A Powerline like prompt for Bash, ZSH and Fish. - Shows some important details about the git/hg branch - Changes color if the last command exited with a failure code - If you're too deep into a directory tree, shortens the displayed path with an ellipsis - Shows the current Python virtualenv...

Aiodnsbrute - DNS Asynchronous Brute Force Utility

A Python 3.5+ tool that uses asyncio to brute force domain names asynchronously. Speed It's fast. Benchmarks on small VPS hosts put around 100k DNS resoultions at 1.5-2mins. An amazon M3 box was used to make 1 mil requests in just over 3 minutes. Your mileage may vary. It's probably best to avoid...

Oracle Linux 7 : python-virtualenv (ELSA-2022-5234)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-5234 advisory. 15.1.0-7 - Security fix for CVE-2019-20916 for the bundled pip wheel Resolves: rhbz1868135 Tenable has extracted the preceding description block directly from t...

Scientific Linux Security Update : python-virtualenv on SL7.x (noarch) (2022:5234)

The remote Scientific Linux 7 host has a package installed that is affected by a vulnerability as referenced in the SLSA-2022:5234-1 advisory. - python-pip: directory traversal in downloadhttpurl function in src/pip/internal/download.py CVE-2019-20916 Note that Nessus has not tested for this issu...