NAME__________Node.js @aedart/support module security bypassPlatforms Affected:Node.js @aedart/support 0.6.0Risk Level:3.7Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Node.js @aedart/support module could allow a remote attacker to bypass...
NAME__________EyouCMS cross-site scriptingPlatforms Affected:EyouCms EyouCms 1.6.1-UTF8-sp1Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________EyouCMS is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Acronis Snap Deploy (Windows) privilege escalationPlatforms Affected:Acronis Snap Deploy (Windows)Risk Level:6.7Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Acronis Snap Deploy (Windows) could allow a local...
NAME__________Denosaurs emoji denial of servicePlatforms Affected:Denosaurs emoji 0.2.1Risk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Denosaurs emoji is vulnerable to a denial of service,...
NAME__________Advanced Host Monitor privilege escalationPlatforms Affected:Risk Level:5.3Exploitability:UnprovenConsequences:Gain Privilege DESCRIPTION__________Advanced Host Monitor could allow a local authenticated attacker to gain elevated...
NAME__________Pimcore directory traversalPlatforms Affected:Pimcore Pimcore 10.5.20Risk Level:4.4Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Pimcore could allow a remote authenticated attacker to traverse directories on the...
NAME__________AC Repair and Services System SQL InjectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________AC Repair and Services System is vulnerable to SQL injection....
NAME__________AC Repair and Services System SQL InjectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________AC Repair and Services System is vulnerable to SQL injection....
NAME__________AC Repair and Services System SQL InjectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________AC Repair and Services System is vulnerable to SQL injection....
NAME__________Sourcecodester Online DJ Management System SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Sourcecodester Online DJ Management System is vulnerable to SQL injection....
NAME__________AC Repair and Services System SQL InjectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________AC Repair and Services System is vulnerable to SQL injection....
NAME__________Sourcecodester Online DJ Management System cross-site scriptingPlatforms Affected:Risk Level:5.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Sourcecodester Online DJ Management System is vulnerable to cross-site scripting,...
NAME__________AC Repair and Services System SQL InjectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________AC Repair and Services System is vulnerable to SQL injection....
NAME__________AC Repair and Services System SQL InjectionPlatforms Affected:Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________AC Repair and Services System is vulnerable to SQL injection....
NAME__________Sourcecodester Online DJ Management System SQL injectionPlatforms Affected:Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Sourcecodester Online DJ Management System is vulnerable to SQL injection....
NAME__________Simple Student Information System cross-site scriptingPlatforms Affected:Risk Level:2.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Student Information System is vulnerable to cross-site scripting, caused by...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three flaws to the Known Exploited Vulnerabilities (KEV) catalog, based...
In yet another instance of how threat actors are abusing Google Ads to serve malware, a threat actor has been...
The North Korean threat actor known as ScarCruft began experimenting with oversized LNK files as a delivery route for RokRAT...
Vice Society Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
T-Mobile disclosed the second data breach of 2023 after discovering that attackers had access to the personal information of hundreds...
A new malware known as ‘LOBSHOT’ distributed using Google ads allows threat actors to stealthily take over infected Windows devices...
The ALPHV ransomware operation, aka BlackCat, has published screenshots of internal emails and video conferences stolen from Western Digital, indicating...
Abuse of the Service Location Protocol May Lead to DoS Attacks The Service Location Protocol (SLP, RFC 2608(link is external))...
