16 matches found
EUVD-2001-1342
Malware in sbrugna...
GHSA-356W-63V5-8WF4
creationtimestamp| type| source ---|---|--- 2025-06-09 19:21:23+00:00| seen| https://infosec.exchange/users/DarkWebInformer/statuses/114655027697783093 2025-06-14 17:54:21+00:00| published-proof-of-concept| https://t.me/TheDarkWebInformer/17956...
[SECURITY] Fedora 39 Update: wordpress-6.5.2-1.fc39
Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web. Important information in /usr/share/doc/wordpress/README.fedora...
Data Exfiltration Using Indirect Prompt Injection
Interesting attack on a LLM: In Writer, users can enter a ChatGPT-like session to edit or create their documents. In this chat session, the LLM can retrieve information from sources on the web to assist users in creation of their documents. We show that attackers can prepare websites that, when a...
GHSA-Q35W-85PQ-RV3X Payara, when deployed to the root context, allows attackers to visit META-INF and WEB-INF
Payara before 2022-11-04, when deployed to the root context, allows attackers to visit META-INF and WEB-INF, a different vulnerability than CVE-2022-37422. This affects Payara Platform Community before 4.1.2.191.38, 5.x before 5.2022.4, and 6.x before 6.2022.1, and Payara Platform Enterprise befo...
Zeebsploit - Web Scanner / Exploitation / Information Gathering
zeebsploit is a tool for hacking searching for web information and scanning vulnerabilities of a web Installation & Usage apt-get install git git clone https://github.com/jaxBCD/Zeebsploit.git cd Zeebsploit chmod +x install ./install python3 zeebsploit.py type 'help' for show modules and follow...
Zeebsploit - Web Scanner / Exploitation / Information Gathering
zeebsploit is a tool for hacking searching for web information and scanning vulnerabilities of a web Installation & Usage apt-get install git git clone https://github.com/jaxBCD/Zeebsploit.git cd Zeebsploit chmod +x install ./install python3 zeebsploit.py type 'help' for show modules and follow...
SQL Injection Vulnerability in Website Development System of Transparent Web Information Development Co.
eTranslate Web Information Development Ltd. is a company that provides system development and design, website visual design, internet marketing and web hosting services to its clients. ET Net Information Development Co., Ltd. website builder system there are SQL injection vulnerabilities, attacke...
[SECURITY] Fedora 22 Update: wordpress-4.3.1-1.fc22
Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web. Important information in /usr/share/doc/wordpress/README.fedora...
[SECURITY] Fedora 11 Update: wordpress-2.8.1-1.fc11
Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web...
Sun Java System Portal Server远程文件泄露漏洞
Sun Java System Portal Server是一种Web信息中心系统,用于工作协作和提供信息服务。 Sun Java System Portal Server的Web Console组件在处理用户请求时存在漏洞,远程攻击者可能利用此漏洞非授权访问到系统文件。 Sun Java System Portal Server 7.2 Sun Java System Portal Server 7.1 Sun --- Sun已经为此发布了一个安全公告(243886)以及相应补丁: 243886:Security Vulnerability Related to Sun Java...
DEBIAN-CVE-2008-4986
wims 3.62 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/env, b /tmp/sed, and c /tmp/referer-home.log temporary files, related to the 1 coqweb and 2 account.sh scripts...
[SECURITY] Fedora 7 Update: wordpress-2.2.1-1.fc7
Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web...
Blazix 1.2 - Password Protected Directory Information Disclosure
source: https://www.securityfocus.com/bid/5567/info Blazix is a freely available, open source web server written in Java. It is available for Linux and Microsoft Windows operating systems. Blazix does not properly handle some special characters when appended to requests. By passing a special...
CVE-2001-1361
Vulnerability in The Web Information Gateway TWIG 2.7.1, possibly related to incorrect security rights and/or the generation of mailto links...
CVE-2001-1361
Vulnerability in The Web Information Gateway TWIG 2.7.1, possibly related to incorrect security rights and/or the generation of mailto links...