NAME Honeywell Experion LX denial of service Platforms Affected:Honeywell Experion LXRisk Level:9.1Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Honeywell Experion LX is vulnerable...
NAME Node.js tolbichgo3 module code execution Platforms Affected:Node.js tolbichgo3Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tolbichgo3 module could allow a remote attacker...
NAME Sourcecodester Simple Task Managing System SQL injection Platforms Affected:Sourcecodester Simple Task Managing System 1.0Risk Level:9.8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION Sourcecodester Simple...
NAME Honeywell ControlEdge default account Platforms Affected:Honeywell ControlEdge 151.1Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Honeywell ControlEdge contains default hardcoded credentials. A remote...
NAME Vim code execution Platforms Affected:Vim Vim 9.0.0321Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim could allow a remote attacker to...
NAME Node.js remotepshell module code execution Platforms Affected:Node.js remotepshellRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js remotepshell module could allow a remote attacker...
NAME Freeciv buffer overflow Platforms Affected:Freeciv Freeciv 2.6.6 Freeciv Freeciv 3.0.2Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Freeciv is vulnerable to a buffer...
NAME Node.js hwzpgf module code execution Platforms Affected:Node.js hwzpgfRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js hwzpgf module could allow a remote attacker...
NAME Node.js wm-publish-statuses module code execution Platforms Affected:Node.js wm-publish-statusesRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wm-publish-statuses module could allow a remote attacker...
NAME Fuji Electric D300win information disclosure Platforms Affected:Fuji Electric D300win 3.7.1.16 Fuji Electric D300win 3.7.1.15Risk Level:8.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION Fuji Electric...
NAME Hgiga OAKlouds Portal website SQL injection Platforms Affected:HGiga OAKlouds Portal 3.0-2 HGiga OAKlouds Portal 2.0-2Risk Level:8.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION Hgiga...
NAME Node.js wm-cookies-api module code execution Platforms Affected:Node.js wm-cookies-apiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wm-cookies-api module could allow a remote attacker...
NAME Node.js api-discord.js module code execution Platforms Affected:Node.js api-discord.jsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js api-discord.js module could allow a remote attacker...
NAME PTC Kepware KEPServerEX buffer overflow Platforms Affected:PTC Kepware KEPServerEX 6.11 PTC ThingWorkx Kepware Server 6.11 PTC ThingWorkx Industrial Connectivity...
NAME Watchguard Firebox buffer overflow Platforms Affected:WatchGuard WatchGuard FireboxRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Watchguard Firebox is vulnerable to a buffer overflow,...
NAME PTC Kepware KEPServerEX buffer overflow Platforms Affected:PTC Kepware KEPServerEX 6.11 PTC ThingWorkx Kepware Server 6.11 PTC ThingWorkx Industrial Connectivity...
NAME WordPress Core Link SQL injection Platforms Affected:WordPress WordPress 2.0.9 WordPress WordPress 2.0.11 WordPress WordPress 2.3.2 WordPress WordPress 2.3.3 WordPress...
Microsoft discovered a vulnerability in the TikTok app for Android that could lead to one-click account hijacking. Microsoft researchers discovered...
This blog entry highlights the threats that dominated the first six months of the year, which we discussed in detail...
Italian oil giant Eni was hit by a cyber attack, attackers compromised its computer networks, but the consequences appear to...
A malware campaign tracked as GO#WEBBFUSCATOR used an image taken from NASA’s James Webb Space Telescope (JWST) as a lure....
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by motu-vai motu-vai Report Enable 2Fa verification without verifying...
Programme HackerOne curl curl Submitted by haxatron1 haxatron1 Report CVE-2022-35252: control code in cookie denial of service Full Report A...
Programme HackerOne Cloudflare Public Bug Bounty Cloudflare Public Bug Bounty Submitted by lohigowda lohigowda Report Blind SSRF on platform.dash.cloudflare.com Due...
