Submit #640421: GitHub koillection 1.6.18 Cross-Site Request Forgery [Accepted]
Submit #640421 / VDB-322047
Aggregator
Top 10 Best Web Application Penetration Testing Companies in 2025
1 month ago
Web application penetration testing in 2025 goes beyond a simple, one-time assessment. The top companies combine human expertise with automation and intelligent platforms to provide continuous, on-demand testing. The rise of Penetration Testing as a Service (PTaaS) and bug bounty programs reflects this evolution, offering flexible, scalable, and real-time security testing that keeps pace with […]
The post Top 10 Best Web Application Penetration Testing Companies in 2025 appeared first on Cyber Security News.
Cyber Advisory
Top 10 Attack Surface Management Software Solutions In 2025
1 month ago
Attack Surface Management (ASM) is a proactive security discipline focused on continuously discovering, analyzing, and reducing an organization’s external-facing digital footprint. In 2025, with the proliferation of cloud services, remote work, and supply chain dependencies, an organization’s attack surface has grown exponentially. Top ASM solutions have evolved beyond simple asset inventory to provide AI-driven risk […]
The post Top 10 Attack Surface Management Software Solutions In 2025 appeared first on Cyber Security News.
Cyber Advisory
Massive Data Leak: Israeli Credit Card Information Surfaces on Darknet Forums
1 month ago
You must login to view this content
cohenido
Safepay
1 month ago
You must login to view this content
cohenido
Desolator New Threat Actor
1 month ago
You must login to view this content
cohenido
Desolator
1 month ago
You must login to view this content
cohenido
Desolator
1 month ago
You must login to view this content
cohenido
Phishing as a Service 2.0: The Franchise Model of Cybercrime
1 month ago
The Golden Arches of Malice When you think of franchising, you probably picture McDonald’s, Starbucks, or Subway — not cybercriminals. But the uncomfortable truth is that modern cybercrime looks a lot less like “lone hacker in a hoodie” and a lot more like fast food chains. Instead of flipping burgers, they’re flipping login pages. Instead […]
The post Phishing as a Service 2.0: The Franchise Model of Cybercrime appeared first on Annoyed Engineer.
The post Phishing as a Service 2.0: The Franchise Model of Cybercrime appeared first on Security Boulevard.
Annoyed Engineer
Сетка 3×3 как зародыш искусственного сознания. Китайцы создали мозг на батарейке от часов
1 month ago
Китайская команда создала чип, вдохновлённый архитектурой мозга.
IOC Alert: AuraStealer C2 Domain Identified
1 month ago
IOC Alert: AuraStealer C2 Domain Identified
Dark Web Informer
CVE-2002-2030 | SQLData Enterprise Server 3.0 HTTP Request memory corruption (ID 86347 / XFDB-7821)
1 month ago
A vulnerability, which was classified as critical, has been found in SQLData Enterprise Server 3.0. This vulnerability affects unknown code of the component HTTP Request Handler. Performing manipulation results in memory corruption.
This vulnerability is identified as CVE-2002-2030. The attack can be initiated remotely. There is not any exploit available.
vuldb.com
CVE-2002-2033 | FAQManager up to 2.2.5 faqmanager.cgi toc privileges management (Nessus ID 10837 / ID 10451)
1 month ago
A vulnerability was found in FAQManager up to 2.2.5 and classified as critical. The affected element is an unknown function of the file faqmanager.cgi. The manipulation of the argument toc with the input %00 results in improper privilege management.
This vulnerability is cataloged as CVE-2002-2033. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2002-2032 | Francisco Burzi PHP-Nuke up to 5.4 Debugging sql_layer.php sql_debug information disclosure (EDB-21233 / Nessus ID 10856)
1 month ago
A vulnerability has been found in Francisco Burzi PHP-Nuke up to 5.4 and classified as problematic. Impacted is an unknown function of the file sql_layer.php of the component Debugging Handler. The manipulation of the argument sql_debug leads to information disclosure.
This vulnerability is listed as CVE-2002-2032. The attack may be initiated remotely. In addition, an exploit is available.
vuldb.com
CVE-2002-2044 | Xqus X-stat 2.2/2.3 x_stat_admin.php phpinfo cross site scripting (ID 10513 / XFDB-8468)
1 month ago
A vulnerability, which was classified as problematic, has been found in Xqus X-stat 2.2/2.3. The affected element is the function phpinfo of the file x_stat_admin.php. The manipulation leads to basic cross site scripting.
This vulnerability is referenced as CVE-2002-2044. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com
CVE-2002-2045 | Xqus X-stat 2.2/2.3 Error Message x_stat_admin.php action privileges management (ID 10512 / XFDB-8467)
1 month ago
A vulnerability, which was classified as critical, was found in Xqus X-stat 2.2/2.3. The impacted element is an unknown function of the file x_stat_admin.php of the component Error Message Handler. The manipulation of the argument action results in improper privilege management.
This vulnerability is identified as CVE-2002-2045. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2002-2054 | Teekai Forum 1.2 Cookie valid_level improper authentication (ID 10708 / XFDB-9285)
1 month ago
A vulnerability marked as problematic has been reported in Teekai Forum 1.2. Impacted is an unknown function of the component Cookie Handler. Performing manipulation of the argument valid_level as part of admin results in improper authentication.
This vulnerability is known as CVE-2002-2054. Remote exploitation of the attack is possible. No exploit is available.
vuldb.com
CVE-2002-2055 | Teekai Tracking Online 1.0 userlog.php ID cross site scripting (EDB-21509 / Nessus ID 15707)
1 month ago
A vulnerability described as problematic has been identified in Teekai Tracking Online 1.0. The affected element is an unknown function of the file userlog.php. Executing manipulation of the argument ID can lead to basic cross site scripting.
This vulnerability is handled as CVE-2002-2055. The attack can be executed remotely. Additionally, an exploit exists.
Upgrading the affected component is recommended.
vuldb.com
CVE-2002-2058 | Teekai Tracking Online 1.0 data/userlog/log.txt missing encryption (ID 10707 / BID-4926)
1 month ago
A vulnerability, which was classified as critical, has been found in Teekai Tracking Online 1.0. This impacts an unknown function of the file data/userlog/log.txt. This manipulation causes missing encryption of sensitive data.
The identification of this vulnerability is CVE-2002-2058. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
DragonForce
1 month ago
You must login to view this content
cohenido