Node.js s23fun module code execution |
NAME Node.js s23fun module code execution Platforms Affected:Node.js s23funRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js s23fun module could allow a remote attacker...
Discourse file upload | CVE-2022-36066
NAME Discourse file upload Platforms Affected:Discourse Discourse 2.9.0.beta5 Discourse Discourse 2.9.0.beta9Risk Level:9.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Discourse could allow a remote authenticated...
Node.js whitebit-docs module code execution |
NAME Node.js whitebit-docs module code execution Platforms Affected:Node.js whitebit-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js whitebit-docs module could allow a remote attacker...
SolarWinds Orion Platform privilege escalation | CVE-2022-36961
NAME SolarWinds Orion Platform privilege escalation Platforms Affected:SolarWinds Orion Platform 2022.2Risk Level:8Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION SolarWinds Orion Platform could allow a...
Node.js yyzreverseshell4 module code execution |
NAME Node.js yyzreverseshell4 module code execution Platforms Affected:Node.js yyzreverseshell4Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js yyzreverseshell4 module could allow a remote attacker...
Sourcecodester Best Student Result Management System SQL injection | CVE-2022-40887
NAME Sourcecodester Best Student Result Management System SQL injection Platforms Affected:Sourcecodester Best Student Result Management System 1.0Risk Level:9.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION...
Node.js chia-docs module code execution |
NAME Node.js chia-docs module code execution Platforms Affected:Node.js chia-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js chia-docs module could allow a remote attacker...
Node.js @cat-digital-workspace/shared-ui-core module code execution |
NAME Node.js @cat-digital-workspace/shared-ui-core module code execution Platforms Affected:Node.js @cat-digital-workspace/shared-ui-coreRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @cat-digital-workspace/shared-ui-core module could allow a remote attacker...
Node.js apl-client module code execution |
NAME Node.js apl-client module code execution Platforms Affected:Node.js apl-clientRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js apl-client module could allow a remote attacker...
Node.js namatnawbyteweb6 module code execution |
NAME Node.js namatnawbyteweb6 module code execution Platforms Affected:Node.js namatnawbyteweb6Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js namatnawbyteweb6 module could allow a remote attacker...
Node.js binary-bot module code execution |
NAME Node.js binary-bot module code execution Platforms Affected:Node.js binary-botRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js binary-bot module could allow a remote attacker...
Node.js tangeshaiou module code execution |
NAME Node.js tangeshaiou module code execution Platforms Affected:Node.js tangeshaiouRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js tangeshaiou module could allow a remote attacker...
Chamilo code execution | CVE-2022-40407
NAME Chamilo code execution Platforms Affected:Chamilo Chamilo 1.11.16Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Chamilo could allow a remote authenticated attacker to execute...
Google Chrome Custom Elements code execution | CVE-2022-3370
NAME Google Chrome Custom Elements code execution Platforms Affected:Google Chrome 106.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Node.js flashloan module code execution |
NAME Node.js flashloan module code execution Platforms Affected:Node.js flashloanRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js flashloan module could allow a remote attacker...
Daily Vulnerability Trends: Sat Oct 01 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31813Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers...
Witchetty APT used steganography in attacks against Middle East entities
A cyberespionage group, tracked as Witchetty, used steganography to hide a previously undocumented backdoor in a Windows logo. Broadcom’s Symantec...
Cobalt Stike Beacon Detected – 77[.]73[.]133[.]73:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 129[.]159[.]45[.]75:9093
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 94[.]158[.]244[.]96:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]98[.]234[.]230:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 146[.]56[.]117[.]35:8585
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 84[.]32[.]128[.]6:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 193[.]239[.]84[.]150:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
