HackerOne Bug Bounty Disclosure: lfi-via-jolokia-at-https://—:1293byshuvam321
Programme HackerOne 8x8 8x8 Submitted by shuvam321 shuvam321 Report LFI via Jolokia at https://...:1293 Full Report A considerable amount of...
HIVE Ransomware Victim: LaVan & Neidenberg
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Million of vehicles can be attacked via MiCODUS MV720 GPS Trackers
Multiple flaws in MiCODUS MV720 Global Positioning System (GPS) trackers shipped with over 1.5 million vehicles can allow hackers to remotely...
Cdb – Automate Common Chrome Debug Protocol Tasks To Help Debug Web Applications From The Command-Line And Actively Monitor And Intercept HTTP Requests And Responses
Pown CDB is a Chrome Debug Protocol utility. The main goal of the tool is to automate common tasks to...
Cobalt Stike Beacon Detected – 154[.]29[.]74[.]218:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 175[.]178[.]73[.]178:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 124[.]223[.]197[.]223:7777
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 114[.]116[.]4[.]45:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]99[.]214[.]111:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
SICK Safety Designer code execution | CVE-2022-27580
NAME SICK Safety Designer code execution Platforms Affected:SICK Safety Designer 1.11.0Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SICK Safety Designer could allow a...
SICK Flexi Soft Designer code execution | CVE-2022-27579
NAME SICK Flexi Soft Designer code execution Platforms Affected:SICK Flexi Soft Designer 1.9.4 SP1Risk Level:8.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION SICK Flexi Soft...
Google Chrome Guest View code execution | CVE-2022-2477
NAME Google Chrome Guest View code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote...
Node.js shescape module command execution |
NAME Node.js shescape module command execution Platforms Affected:Node.js shescape 1.1.2 Node.js shescape 1.5.0 Node.js shescape 1.4.0Risk Level:8.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js...
Google Chrome Views code execution | CVE-2022-2481
NAME Google Chrome Views code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Google Chrome PDF code execution | CVE-2022-2478
NAME Google Chrome PDF code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a remote attacker...
Node.js mediasoup-sdp-bridge module code execution |
NAME Node.js mediasoup-sdp-bridge module code execution Platforms Affected:Node.js mediasoup-sdp-bridgeRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js mediasoup-sdp-bridge module could allow a remote attacker...
Node.js kadenaswap-ui module code execution |
NAME Node.js kadenaswap-ui module code execution Platforms Affected:Node.js kadenaswap-uiRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js kadenaswap-ui module could allow a remote attacker...
Node.js lido-cosmos-docs module code execution |
NAME Node.js lido-cosmos-docs module code execution Platforms Affected:Node.js lido-cosmos-docsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js lido-cosmos-docs module could allow a remote attacker...
DSK DSKNet SQL injection | CVE-2022-24691
NAME DSK DSKNet SQL injection Platforms Affected:DSK DSKNet 2.16.136.0 DSK DSKNet 2.17.136.5Risk Level:8.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION DSK DSKNet is vulnerable to...
DSK DSKNet SQL injection | CVE-2022-24690
NAME DSK DSKNet SQL injection Platforms Affected:DSK DSKNet 2.16.136.0 DSK DSKNet 2.17.136.5Risk Level:9.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION DSK DSKNet is vulnerable to...
Google Chrome Service Worker API code execution | CVE-2022-2480
NAME Google Chrome Service Worker API code execution Platforms Affected:Google Chrome 103.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Google Chrome could allow a...
Node.js wxy-tools module code execution |
NAME Node.js wxy-tools module code execution Platforms Affected:Node.js wxy-toolsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js wxy-tools module could allow a remote attacker...
Roblox breached: Internal documents posted online by unknown attackers
A data compromise situation has impacted Roblox Corporation, the developers of the massive smash-hit video game Roblox. An as-yet unknown...
Daily Vulnerability Trends: Wed Jul 20 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-2097AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised...
