CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: Vanna library affected versions not specified Description: The Vanna library is affected by a remote code execution issue due to prompt injection. This allows an attacker to alter the prompt function used for visualized results and run...

9.2CVSS8.2AI score0.06494EPSS

Exploits0References16

CNNVD•added 2023/05/18 12:0 a.m.•2 views

Umbraco 安全漏洞

Umbraco is an open source Content Management System CMS written in C by the Danish company Umbraco. A security vulnerability exists in Umbraco CMS version 7.12.4, which originates from a vulnerability that allows an authenticated administrator to execute remote code via msxsl:script in...

7.2CVSS7.4AI score0.5344EPSS

Exploits1References5

Positive Technologies•added 2023/05/18 12:0 a.m.•4 views

PT-2023-11364 · Umbraco · Umbraco Cms

Name of the Vulnerable Software and Affected Versions: Umbraco CMS versions 4.11.8 through 7.15.10 Umbraco CMS version 7.12.4 Description: The issue allows Remote Code Execution by authenticated administrators via msxsl:script in an xsltSelection to "developer/Xslt/xsltVisualize.aspx"...

7.2CVSS7.5AI score0.5344EPSS

Exploits1References9

Kitploit•added 2023/04/26 12:30 p.m.•42 views

PortEx - Java Library To Analyse Portable Executable Files With A Special Focus On Malware Analysis And PE Malformation Robustness

PortEx is a Java library for static malware analysis of Portable Executable files. Its focus is on PE malformation robustness, and anomaly detection. PortEx is written in Java and Scala, and targeted at Java applications. Features Reading header information from: MSDOS Header, COFF File Header,...

7.1AI score

Exploits0References5

Akamai Blog•added 2021/05/12 1:0 p.m.•14 views

Visualize and Analyze Bots With Real User Monitoring

...

2AI score

Exploits0

Kitploit•added 2019/12/25 11:30 a.m.•97 views

PAKURI - Penetration Test Achieve Knowledge Unite Rapid Interface

What's PAKURI In Japanese, imitating is called “Pakuru”. ぱくる godan conjugation, hiragana and katakana パクる, rōmaji pakuru 1. eat with a wide open mouth 2. steal when one isn't looking, snatch, swipe 3. copy someone's idea or design 4. nab, be caught by the police Wiktionary:ぱくる Description...

7.6AI score

Exploits0References3

Kitploit•added 2018/06/21 1:43 p.m.•13 views

LeakScraper - An Efficient Set Of Tools To Process And Visualize Huge Text Files Containing Credentials

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. These tools are designed to help pentesters/redteamers doing OSINT, credentials gathering and credentials stuffing attacks. Installation First things first : have a workingmongodb server. The...

7.2AI score

Exploits0References2

Veracode•added 2018/01/31 5:56 a.m.•22 views

Cross-site Scripting (XSS)

Kibana is vulnerable to cross-site scripting XSS attacks. This is because the visualization title is enabled in render function of visualizeembeddablefactory.js which allows an attacker to inject and execute arbitrary webscript...

6.1CVSS5.9AI score0.00375EPSS

Exploits0References4Affected Software1

ThreatPost•added 2016/02/08 8:5 a.m.•148 views

Modern Defenders Share, Visualize and Succeed

TENERIFE, Spain – Network defenders who rely solely on lists of assets to protect are running a fool’s errand. Instead, it’s crucial to think in graphs to not only visualize threats, but also to understand network edges, and dependencies between assets and accounts in order to be able to capture...

9.3CVSS8.2AI score0.94354EPSS

Exploits33

Kitploit•added 2013/09/20 11:49 p.m.•16 views

[ollydbg-binary-execution-visualizer] New Tool for Visualizing Binaries With Ollydbg and Graphvis

Sometimes crackme’s or something you might be reversing will constantly bug you due to the excessive usage of f7 & f8. It will be quiet neat if you can see how the application is executing visually and set your break points accordingly. Requirements: o Ollyscript plugin o Bunch of your favorite...

7.3AI score

Exploits0References2

phpMyAdmin•added 2012/08/16 12:0 a.m.•32 views

Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages.

PMASA-2012-4 Announcement-ID: PMASA-2012-4 Date: 2012-08-16 Summary Multiple XSS in Table operations, Database structure, Trigger and Visualize GIS data pages. Description Using a crafted table name, it was possible to produce a XSS : 1 On the Database Structure page, creating a new table with a...

3.5CVSS7.2AI score0.00209EPSS

Exploits1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by