Chitora Lhaz 路径遍历漏洞

Chitora Lhaz is a Windows compression tool developed by Chitora Company in Japan. It supports the creation of files in various compression formats and the decompression of those files. Chitora Lhaz has a path traversal vulnerability. This vulnerability stems from an issue with the automatic folde...

Hayabusa 跨站脚本漏洞

Hayabusa is an open-source Windows event log forensic and threat hunting tool developed by Yamato Security. Versions prior to Hayabusa 3.8.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from HTML report outputs that had the same cross-site scripting vulnerabilities,...

GreenShot 代码问题漏洞

GreenShot is a lightweight screenshot software tool for Windows developed by GreenShot Inc. Versions of Greenshot 1.3.312 and earlier contained a code vulnerability that stemmed from an insecure search path for executable files. This vulnerability could allow local attackers to execute arbitrary...

GreenShot 安全漏洞

GreenShot is a lightweight screenshot software tool for Windows from GreenShot. A security vulnerability exists in GreenShot 1.3.310 and earlier versions, which stems from improper filename handling and can lead to OS command injection...

EUVD-2023-25892

Malicious code in bioql PyPI...

EUVD-2023-40823

Malicious code in bioql PyPI...

pentest_compilation

It is an offensive tool for Windows. The repository contains a compilation of commands, tips, and scripts used for penetration testing and red teaming exercises. The provided code snippet is an XML file named "detalle.SettingContent-ms" located in the "Phishing" directory. This file appears to be...

CVE-2023-5719

The Crimson 3.2 Windows-based configuration tool allows users with administrative access to define new passwords for users and to download the resulting security configuration to a device. If such a password contains the percent % character, invalid values will be included, potentially truncating...

Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar

It is an offensive tool for Windows. This repository contains a...

GreenShot 安全漏洞

GreenShot is a lightweight screenshot software tool for Windows from GreenShot. A security vulnerability exists in GreenShot prior to version 1.2.10. The vulnerability stems from a deserialization operation performed by GreenShot when opening a .greenshot file, which is vulnerable due to security...

Caphyon Ltd Advanced Installer 安全漏洞

Caphyon Ltd Advanced Installer is a powerful and easy-to-use Windows installer authoring tool from Caphyon Romania. It is used to install, update and configure products safely and securely. A security vulnerability exists in Caphyon Ltd Advanced Installer version 19.2, which stems from a Remote...

OpenText Brava! Desktop out-of-bounds write vulnerability (CNVD-2021-42327)

OpenText Brava! Desktop is a Windows-based viewing and collaboration tool that lets you easily view and collaborate on almost any file. An out-of-bounds write vulnerability exists in the parsing of DWF files in OpenText Brava! Desktop. The vulnerability stems from a lack of proper validation of...

OpenText Brava! Desktop Heap Buffer Overflow Vulnerability

OpenText Brava! Desktop is a Windows-based viewing and collaboration tool that lets you easily view and collaborate on almost any file. A heap buffer overflow vulnerability exists in the parsing of DWF files in OpenText Brava! Desktop. The vulnerability stems from a failure to properly validate t...

OpenText Brava! Desktop Remote Code Execution Vulnerability

OpenText Brava! Desktop is a Windows-based viewing and collaboration tool that lets you easily view and collaborate on almost any file. A remote code execution vulnerability exists in the parsing of PDF files in OpenText Brava! Desktop. The vulnerability stems from a failure to properly initializ...

OpenText Brava! Desktop out-of-bounds write vulnerability (CNVD-2021-42320)

OpenText Brava! Desktop is a Windows-based viewing and collaboration tool that lets you easily view and collaborate on almost any file. An out-of-bounds write vulnerability exists in the parsing of DWF files in OpenText Brava! Desktop. The vulnerability stems from a lack of proper validation of...

OpenText Brava! Desktop Memory Corruption Vulnerability

OpenText Brava! Desktop is a Windows-based viewing and collaboration tool that lets you easily view and collaborate on almost any file. A memory corruption vulnerability exists in the parsing of DXF files in OpenText Brava! Desktop. The vulnerability stems from a lack of proper validation of...

Citrix Health Assistant - Troubleshoot VDA Registration and Session Launch

Citrix Virtual Apps and Desktops, formerly XenDesktop, fits the enterprise need to bring both VDI and apps into a user-centric experience. Citrix Virtual Apps, formerly XenApp, fits the enterprise need to bring legacy apps into a cloud management environment. Citrix Health Assistantv1.8.3.71...

XAPI Database Parsing Tool - Windows

Description This script applies an XML stylesheet to the XAPI database and creates a file that can be viewed in a web browser. The style sheet is an example of how data can be extracted from the database for quick offline troubleshooting and configuration analysis. Once the script has been ran...

CVE-2018-3703

Improper directory permissions in the installer for the IntelR SSD Data Center Tool for Windows before v3.0.17 may allow authenticated users to potentially enable an escalation of privilege via local access...

Metamorfo Targets Brazilian Users with Banking Trojans

A recent spate of financial malware campaigns targeting Brazilian companies, collectively dubbed Metamorfo, uses “spray and pray” spam tactics to ensnare their victims. Across the various offensives, the bad actors are abusing legitimate, signed binaries to load the malicious code. As the name...