BugCrowd Bug Bounty Disclosure: P4 – Email HTML Injection at https://baito.indeed.com – By danibhai
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P4 – Cleartext submission of password on http://insights.indeed.tech/users/sign_in – By dirty0124
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P4 – Stored-xss is working – By agnihackers123
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
Cobalt Stike Beacon Detected – 47[.]96[.]130[.]142:9999
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:4664
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 101[.]36[.]107[.]228:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 123[.]1[.]189[.]26:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 82[.]157[.]64[.]227:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:1599
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 54[.]176[.]197[.]4:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:113
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 116[.]62[.]185[.]223:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 185[.]48[.]86[.]75:27017
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Vulnerable Docker Installations Are A Playhouse for Malware Attacks
Uptycs researchers identified ongoing malicious campaigns through our Docker honeypot targeting exposed Docker API. The Uptycs Threat Research team has...
WatchGuard security update-CVE-2022-26318
NAME WatchGuard Technologies - Fireware Platforms Affected:FirewareRisk Level:mediumCVE Type:Unspecified DESCRIPTION CVE-2022-26318 is an unspecified vulnerability impacting multiple versions of WatchGuard...
Node.js react-monorail-next module code execution |
NAME Node.js react-monorail-next module code execution Platforms Affected:Node.js react-monorail-nextRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js react-monorail-next module could allow a remote attacker...
F5 BIG-IP command execution | CVE-2022-28695
NAME F5 BIG-IP command execution Platforms Affected:F5 BIG-IP 13.1.0 F5 BIG-IP 14.1.0 F5 BIG-IP 15.1.0 F5 BIG-IP 14.1.4 F5 BIG-IP...
Fortinet FortiIsolator weak security | CVE-2021-41020
NAME Fortinet FortiIsolator weak security Platforms Affected:Fortinet FortiIsolator 2.3.2Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Fortinet FortiIsolator could provide weaker than expected security,...
Node.js hl7.fhir.r3.core module code execution |
NAME Node.js hl7.fhir.r3.core module code execution Platforms Affected:Node.js hl7.fhir.r3.coreRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js hl7.fhir.r3.core module could allow a remote attacker...
F5 BIG-IP (Advanced WAF, APM, ASM) and Guided Configuration (GC) security bypass | CVE-2022-25946
NAME F5 BIG-IP (Advanced WAF, APM, ASM) and Guided Configuration (GC) security bypass Platforms Affected:F5 BIG-IP (APM) 14.1.0 F5 BIG-IP...
F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting | CVE-2022-28716
NAME F5 BIG-IP (AFM, CGNAT, PEM) cross-site scripting Platforms Affected:F5 BIG-IP (AFM) 15.1.0 F5 BIG-IP (PEM) 15.1.0 F5 BIG-IP (PEM)...
Johnson Controls Metasys security bypass | CVE-2022-21934
NAME Johnson Controls Metasys security bypass Platforms Affected:Johnson Controls Metasys 10 Johnson Controls Metasys 11Risk Level:8Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Johnson Controls...
Node.js nodejs-gcloud-pubsub-module module code execution |
NAME Node.js nodejs-gcloud-pubsub-module module code execution Platforms Affected:Node.js nodejs-gcloud-pubsub-moduleRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js nodejs-gcloud-pubsub-module module could allow a remote attacker...
Node.js onboarding-setup-guide module code execution |
NAME Node.js onboarding-setup-guide module code execution Platforms Affected:Node.js onboarding-setup-guideRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js onboarding-setup-guide module could allow a remote attacker...
