Cobalt Stike Beacon Detected – 121[.]36[.]81[.]223:10443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Subscribe2 plugin for WordPress cross-site request forgery | CVE-2023-3407
NAME__________Subscribe2 plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Subscribe2 Plugin WordPress 10.41Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Subscribe2 plugin for WordPress is vulnerable...
Salon Booking System plugin for WordPress cross-site request forgery | CVE-2023-3427
NAME__________Salon Booking System plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress Salon Booking System Plugin WordPress 8.4.6Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Salon Booking...
jgraph/drawio denial of service | CVE-2023-3398
NAME__________jgraph/drawio denial of servicePlatforms Affected:jgraph drawio 18.1.3Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________jgraph/drawio is vulnerable to a denial of service, caused by...
Ruby on Rails redirect_to method cross-site scripting | CVE-2023-28362
NAME__________Ruby on Rails redirect_to method cross-site scriptingPlatforms Affected:Ruby on Rails Ruby on Rails 6.1.7.3 Ruby on Rails Ruby on Rails...
Xenforo cross-site scripting |
NAME__________Xenforo cross-site scriptingPlatforms Affected:Xenforo Xenforo 2.2.13Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Xenforo is vulnerable to multiple cross-site scripting, caused by improper validation of...
Traggo Server directory traversal | CVE-2023-34843
NAME__________Traggo Server directory traversalPlatforms Affected:Traggo Server 0.3.0Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Traggo Server could allow a remote attacker to traverse directories on...
MCL-Net information disclosure | CVE-2023-34834
NAME__________MCL-Net information disclosurePlatforms Affected:MCL MCL-Net 4.3.5.8788Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________MCL-Net could allow a remote attacker to obtain sensitive information. By sending...
Job Board file upload |
NAME__________Job Board file uploadPlatforms Affected:Job Board Job Board 1.0Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Job Board could allow a remote attacker to upload...
Multiple NETGEAR products weak security |
NAME__________Multiple NETGEAR products weak securityPlatforms Affected:NETGEAR RBR750 NETGEAR RBK842 NETGEAR RBR840 NETGEAR RBS840 NETGEAR RBK852 NETGEAR RBS850 NETGEAR MK62 NETGEAR...
Multiple NETGEAR products denial of service |
NAME__________Multiple NETGEAR products denial of servicePlatforms Affected:NETGEAR MK62 NETGEAR R6700v3 NETGEAR MR60 NETGEAR MS60 NETGEAR MR80 NETGEAR MS80 NETGEAR MK83...
NETGEAR R6700v3 command execution |
NAME__________NETGEAR R6700v3 command executionPlatforms Affected:NETGEAR R6700v3Risk Level:6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR R6700v3 could allow a local authenticated attacker to execute arbitrary commands...
BKG Professional NtripCaster cross-site scripting | CVE-2023-3034
NAME__________BKG Professional NtripCaster cross-site scriptingPlatforms Affected:BKG NTRIP Caster 2.0.44Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________BKG Professional NtripCaster is vulnerable to cross-site scripting, caused...
Samsung devices with select Exynos modem chipsets information disclosure | CVE-2023-21512
NAME__________Samsung devices with select Exynos modem chipsets information disclosurePlatforms Affected:Samsung Devices with select Exynos modem chipsetsRisk Level:2.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Samsung devices...
Multiple NETGEAR products command execution |
NAME__________Multiple NETGEAR products command executionPlatforms Affected:NETGEAR RAX45 NETGEAR RAX43 NETGEAR RAX40v2 NETGEAR RAX35v2 NETGEAR RAX42 NETGEAR RAX38v2 NETGEAR RAXE500 NETGEAR...
GitLab denial of service | CVE-2023-2232
NAME__________GitLab denial of servicePlatforms Affected:GitLab GitLab 15.10 GitLab GitLab 16.0Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________GitLab is vulnerable to a denial of...
NixOS calamares-nixos-extensions information disclosure | CVE-2023-36476
NAME__________NixOS calamares-nixos-extensions information disclosurePlatforms Affected:NixOS calamares-nixos-extensions 0.3.12Risk Level:7.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________NixOS calamares-nixos-extensions could allow a local attacker to obtain sensitive information,...
NETGEAR R8500 buffer overflow |
NAME__________NETGEAR R8500 buffer overflowPlatforms Affected:NETGEAR R8500Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NETGEAR R8500 is vulnerable to a stack-based buffer overflow, caused by improper...
Multiple NETGEAR products cross-site scripting |
NAME__________Multiple NETGEAR products cross-site scriptingPlatforms Affected:Netgear R8000 NETGEAR R7850 NETGEAR RAX45 NETGEAR LAX20 NETGEAR RAX43 NETGEAR RAX40v2 NETGEAR RAX35v2 NETGEAR...
Samsung devices with select Exynos modem chipsets security bypass | CVE-2023-21513
NAME__________Samsung devices with select Exynos modem chipsets security bypassPlatforms Affected:Samsung Devices with select Exynos modem chipsetsRisk Level:6.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Samsung devices...
Trellix Enterprise Security Manager command execution | CVE-2023-3313
NAME__________Trellix Enterprise Security Manager command executionPlatforms Affected:Trellix Enterprise Security Manager 11.6.3 Trellix Enterprise Security Manager 11.6.2Risk Level:7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Trellix Enterprise...
GitLab security bypass | CVE-2023-3444
NAME__________GitLab security bypassPlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0 GitLab...
GitLab denial of service | CVE-2023-3424
NAME__________GitLab denial of servicePlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0...
GitLab security bypass | CVE-2023-2576
NAME__________GitLab security bypassPlatforms Affected:GitLab Enterprise Edition 16.1.0 GitLab Enterprise Edition 16.0.5 GitLab Enterprise Edition 15.11.9 GitLab Community Edition 16.1.0 GitLab...
