Cobalt Stike Beacon Detected – 194[.]50[.]153[.]35:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OISF Suricata directory traversal | CVE-2023-35852
NAME__________OISF Suricata directory traversalPlatforms Affected:OISF Suricata 6.0.12Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________OISF Suricata could allow a remote attacker to traverse directories on...
GiveWP Plugin for WordPress cross-site request forgery | CVE-2023-25450
NAME__________GiveWP Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress GiveWP Plugin for WordPress 2.25.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GiveWP Plugin for WordPress is...
CTAPT Plugin for WordPress cross-site scripting | CVE-2023-25972
NAME__________CTAPT Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Ctapt Plugin for WordPress 3.7Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________CTAPT Plugin for WordPress is vulnerable...
PHPGurukul Rail Pass Management System SQL injection | CVE-2023-3275
NAME__________PHPGurukul Rail Pass Management System SQL injectionPlatforms Affected:PHPGurukul Rail Pass Management System 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________PHPGurukul Rail Pass Management System...
Multiple Hikvision products session hijacking | CVE-2023-28809
NAME__________Multiple Hikvision products session hijackingPlatforms Affected:Hikvision DS-K1T804AXX Hikvision DS-K1T341AXX Hikvision DS-K1T671XXX Hikvision DS-K1T343XXX Hikvision DS-K1T341C Hikvision DS-K1T320XXXRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Multiple...
Multiple Hikvision products security bypass | CVE-2023-28810
NAME__________Multiple Hikvision products security bypassPlatforms Affected:Hikvision DS-K1T804AXX Hikvision DS-K1T341AXX Hikvision DS-K1T671XXX Hikvision DS-K1T343XXX Hikvision DS-K1T341C Hikvision DS-K1T320XXX Hikvision DS-KH63 Series...
HT Easy GA4 plugin for WordPress cross-site request forgery | CVE-2023-23802
NAME__________HT Easy GA4 plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress HT Easy GA4 Plugin for WordPress 1.0.6Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________HT...
CformsII Plugin for WordPress cross-site request forgery | CVE-2023-25449
NAME__________CformsII Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress CformsII Plugin for WordPress 15.0.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CformsII Plugin for WordPress is...
Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) cross-site scripting | CVE-2023-2819
NAME__________Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) cross-site scriptingPlatforms Affected:Proofpoint Threat Response 5.10.0Risk Level:4.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Proofpoint Threat Response /...
Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) information disclosure | CVE-2023-2820
NAME__________Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) information disclosurePlatforms Affected:Proofpoint Threat Response 5.10.0 Proofpoint Threat Response Auto-Pull 5.10.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain...
Multiple Cloud Foundry products information disclosure | CVE-2023-20885
NAME__________Multiple Cloud Foundry products information disclosurePlatforms Affected:Cloud Foundry CF NFS volume release 5.0.26 Cloud Foundry CF NFS volume release 7.1.18...
Simple Slug Translate plugin for WordPress cross-site scripting | CVE-2023-26515
NAME__________Simple Slug Translate plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Simple Slug Translate Plugin for WordPress 2.7.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Slug...
Apollo GraphQL Apollo Server cross-site scripting |
NAME__________Apollo GraphQL Apollo Server cross-site scriptingPlatforms Affected:Apollo GraphQL Apollo Server 4.0.0 Apollo GraphQL Apollo Server 4.7.3Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Apollo GraphQL...
wp2syslog Plugin for WordPress cross-site scripting | CVE-2023-25974
NAME__________wp2syslog Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress wp2syslog Plugin for WordPress 1.0.5Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________wp2syslog Plugin for WordPress is vulnerable...
asMembe plugin for WordPress cross-site scripting | CVE-2023-26541
NAME__________asMembe plugin for WordPress cross-site scriptingPlatforms Affected:WordPress asMember Plugin for WordPress 1.5.4Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________asMembe Plugin for WordPress is vulnerable...
JS Job Manager Plugin for WordPress cross-site scripting | CVE-2023-25963
NAME__________JS Job Manager Plugin for WordPress cross-site scriptingPlatforms Affected:Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________JS Job Manager Plugin for WordPress is vulnerable to...
xlsxio denial of service | CVE-2023-34795
NAME__________xlsxio denial of servicePlatforms Affected:xlsxio xlsxio 0.1.2 xlsxio xlsxio 0.2.34Risk Level:3.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________xlsxio is vulnerable to a denial of...
Strong Testimonials plugin for WordPress cross-site scripting | CVE-2022-26013
NAME__________Strong Testimonials plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Strong Testimonials Plugin for WordPress 3.0.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Strong Testimonials Plugin for...
OpenZeppelin Contracts security bypass | CVE-2023-34459
NAME__________OpenZeppelin Contracts security bypassPlatforms Affected:OpenZeppelin OpenZeppelin Contracts 4.9.1Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________OpenZeppelin Contracts could allow a remote authenticated attacker to bypass...
HPE Insight Remote Support information disclosure | CVE-2023-30904
NAME__________HPE Insight Remote Support information disclosurePlatforms Affected:HPE Insight Remote Support Standard Software 7.12Risk Level:7.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________HPE Insight Remote Support could...
SCRMS SQL injection | CVE-2023-34548
NAME__________SCRMS SQL injectionPlatforms Affected:SourceCodester Simple Customer Relationship Management CRM 1.0Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SCRMS is vulnerable to SQL injection. A remote...
Debug Assistant Plugin for WordPress cross-site scripting | CVE-2023-26527
NAME__________Debug Assistant Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Debug Assistant Plugin for WordPress 1.4Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Debug Assistant Plugin for...
WP No External Links Plugin for WordPress cross-site scripting | CVE-2023-26537
NAME__________WP No External Links Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP No External Links Plugin for WordPress 1.0.2Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting...
