Aggregator
Quick & Dirty Obfuscated JavaScript Analysis, (Sun, Nov 24th)
5 months 3 weeks ago
As mentioned in diary entry "Increase In Phishing SVG Attachments", I have a phishing SVG sample wi
A Threat Actor is Allegedly Selling VPN Access to an Unidentified German IT Corp
5 months 3 weeks ago
A Threat Actor is Allegedly Selling VPN Access to an Unidentified German IT Corp
Dark Web Informer - Cyber Threat Intelligence
CornDB Claims to be Selling Data to an Unidentified Global Health Company
5 months 3 weeks ago
CornDB Claims to be Selling Data to an Unidentified Global Health Company
Dark Web Informer - Cyber Threat Intelligence
Obs170|Obsidian的官方網頁擷取工具:Obsidian Web Clipper;設定與使用
5 months 3 weeks ago
由
Lynx
5 months 3 weeks ago
cohenido
Rey Has Allegedly Leaked the Data of The District Department of Transportation
5 months 3 weeks ago
Rey Has Allegedly Leaked the Data of The District Department of Transportation
Dark Web Informer - Cyber Threat Intelligence
A Threat Actor Allegedly Leaked the Database of Government of Chubut
5 months 3 weeks ago
A Threat Actor Allegedly Leaked the Database of Government of Chubut
Dark Web Informer - Cyber Threat Intelligence
CornDB Has Allegedly Leaked the Data of Sofal Synergy
5 months 3 weeks ago
CornDB Has Allegedly Leaked the Data of Sofal Synergy
Dark Web Informer - Cyber Threat Intelligence
el_farado Has Claimed to Have Leaked the Data of X-Cart
5 months 3 weeks ago
el_farado Has Claimed to Have Leaked the Data of X-Cart
Dark Web Informer - Cyber Threat Intelligence
CVE-2024-11664 | eNMS up to 4.2 TGZ File eNMS/controller.py multiselect_filtering path traversal
5 months 3 weeks ago
A vulnerability, which was classified as critical, has been found in eNMS up to 4.2. Affected by this issue is the function multiselect_filtering of the file eNMS/controller.py of the component TGZ File Handler. The manipulation leads to path traversal.
This vulnerability is handled as CVE-2024-11664. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to apply a patch to fix this issue.
vuldb.com
Submit #447375: https://www.enms.io/ eNMS 4.2 REMOTE CODE EXECUTION VIA ZIP SLIP [Duplicate]
5 months 3 weeks ago
Submit #447375 / VDB-285986
slash0x99
Submit #447374: https://www.enms.io/ eNMS 4.2 REMOTE CODE EXECUTION [Accepted]
5 months 3 weeks ago
Submit #447374 / VDB-285986
slash0x99
CVE-2024-11663 | Codezips E-Commerce Site 1.0 search.php keywords sql injection
5 months 3 weeks ago
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection.
This vulnerability is known as CVE-2024-11663. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
STIIIZY Has Gone Up in Smoke to Everest Ransomware
5 months 3 weeks ago
STIIIZY Has Gone Up in Smoke to Everest Ransomware
Dark Web Informer - Cyber Threat Intelligence
CVE-2024-53899 | virtualenv up to 20.26.5 Activation Script command injection (Issue 2768)
5 months 3 weeks ago
A vulnerability classified as critical has been found in virtualenv up to 20.26.5. Affected is an unknown function of the component Activation Script Handler. The manipulation leads to command injection.
This vulnerability is traded as CVE-2024-53899. Access to the local network is required for this attack to succeed. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-24263 | Hospital Management System 4.0 func.php email sql injection (Issue 17 / EDB-50718)
5 months 3 weeks ago
A vulnerability was found in Hospital Management System 4.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Hospital-Management-System-master/func.php. The manipulation of the argument email leads to sql injection.
This vulnerability is known as CVE-2022-24263. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Submit #447297: Codezips E-commerce Site Using PHP With Source Code V1.0 SQL Injection [Accepted]
5 months 3 weeks ago
Submit #447297 / VDB-285985
xiongdaicheng
Everest
5 months 3 weeks ago
cohenido
Everest
5 months 3 weeks ago
cohenido