Google fixed a new Chrome Zero-Day actively exploited in the wild
Google addressed a dozen vulnerabilities in the Chrome browser, including the fifth Chrome zero-day flaw exploited this year. Google this...
HackerOne Bug Bounty Disclosure: cross-site-scripting-vulnerability-in-fabric-sdk-py-source-codebybhaskar_ram
Programme HackerOne Hyperledger Hyperledger Submitted by bhaskar_ram bhaskar_ram Report Cross Site Scripting Vulnerability in fabric-sdk-py source code Full Report A...
Hoaxshell – An Unconventional Windows Reverse Shell, Currently Undetected By Microsoft Defender And Various Other AV Solutions, Solely Based On Http(S) Traffic
hoaxshell is an unconventional Windows reverse shell, currently Find more screenshots here. Installation git clone https://github.com/t3l3machus/hoaxshellcd ./hoaxshellsudo pip3 install -r...
SitePoint – 1,021,790 breached accounts
In June 2020, the web development site SitePoint suffered a data breach that exposed over 1M customer records. Impacted data...
Cobalt Stike Beacon Detected – 43[.]138[.]247[.]59:6001
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]107[.]78[.]179:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 43[.]142[.]176[.]16:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]13[.]205[.]195:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]243[.]102[.]167:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 42[.]192[.]134[.]128:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 120[.]53[.]104[.]31:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 81[.]69[.]5[.]139:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]13[.]15[.]126:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 45[.]67[.]35[.]208:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 103[.]20[.]235[.]219:81
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
BugCrowd Bug Bounty Disclosure: P1 – Critical Local File Read in Electron Desktop App – By Renwa
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
North Korea-linked APT targets Job Seekers with macOS malware
The North Korea-linked Lazarus Group has been observed targeting job seekers with macOS malware working also on Intel and M1...
Node.js @uc-maps/tile-layers.react module code execution |
NAME Node.js @uc-maps/tile-layers.react module code execution Platforms Affected:Node.js @uc-maps/tile-layers.reactRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @uc-maps/tile-layers.react module could allow a remote attacker...
Node.js @bigid-ui/components module code execution | CVE-2022-2335
NAME Node.js @bigid-ui/components module code execution Platforms Affected:Node.js @bigid-ui/componentsRisk Level:9.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION Node.js @bigid-ui/components module could allow a remote...
Cockpit security bypass | CVE-2022-2818
NAME Cockpit security bypass Platforms Affected:Cockpit Cockpit 2.2.1Risk Level:9.8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Cockpit could allow a remote attacker to bypass security...
Apple macOS code execution | CVE-2022-22630
NAME Apple macOS code execution Platforms Affected:Apple macOS Monterey 12.3Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Apple macOS could allow a remote attacker...
Vim buffer overflow | CVE-2022-2819
NAME Vim buffer overflow Platforms Affected:Vim Vim 9.0.0210Risk Level:7.8Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION Vim is vulnerable to a heap-based buffer...
Node.js @uc-maps/provider-google.react module code execution |
NAME Node.js @uc-maps/provider-google.react module code execution Platforms Affected:Node.js @uc-maps/provider-google.reactRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @uc-maps/provider-google.react module could allow a remote attacker...
WWBN AVideo cross-site scripting | CVE-2022-32770
NAME WWBN AVideo cross-site scripting Platforms Affected:WWBN AVideo 11.6 WWBN AVideo dev master commit 3f7c0364Risk Level:9.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION WWBN AVideo...
