Researchers developed an exploit code for CVE-2022-24086 vulnerability affecting Adobe Commerce and Magento Open Source. Positive Technologies researchers have created a working...
Attackers compromise Microsoft Teams accounts to attach malicious executables to chat and spread them to participants in the conversation. While...
njsscan is a static application testing (SAST) tool that can find insecure code patterns in your node.js applications using simple...
Mozilla has issued a warning about the upcoming versions 100 for both Chrome and Firefox. The change in the version...
Cisco warns of a DoS issue affecting its Email Security Appliance (ESA) product that could be exploited using specially crafted...
The European Data Protection Supervisor authority called for a ban on the development and the use of Pegasus-like commercial spyware....
Snaffler is a tool for pentesters to help find delicious candy needles (creds mostly, but it's flexible) in a bunch...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Researchers spotted a new Golang-based botnet called Kraken that is under active development and supports a lot of backdoor capabilities. Kraken is...
NAME Vicidial cross-site scripting Platforms Affected:Vicidial Vicidial 2.14-783aRisk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Vicidial is vulnerable to multiple cross-site scripting, caused by...
NAME crossbeam-utils code execution Platforms Affected:crossbeam-utils crossbeam-utils 0.8.6Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION crossbeam-utils could allow a remote attacker to execute arbitrary...
NAME Jenkins Team Views Plugin cross-site scripting Platforms Affected:Jenkins Team Views Plugin 0.9.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Team Views Plugin...
NAME Jenkins Pipeline: Shared Groovy Libraries Plugin code execution Platforms Affected:Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
NAME Jenkins Generic Webhook Trigger Plugin cross-site scripting Platforms Affected:Jenkins Generic Webhook Trigger Plugin 1.81Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Generic...
NAME Flatpress cross-site scripting Platforms Affected:Flatpress Flatpress 1.2.1Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Flatpress is vulnerable to multiple cross-site scripting, caused by...
NAME Jenkins Pipeline: Groovy Plugin code execution Platforms Affected:Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Jenkins Pipeline:...
NAME Jenkins Pipeline: Shared Groovy Libraries Plugin code execution Platforms Affected:Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
NAME Jenkins Pipeline: Shared Groovy Libraries Plugin command execution Platforms Affected:Jenkins Pipeline: Shared Groovy Libraries Plugin 552.vd9cc05b8a2e1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION...
NAME VMware NSX Data Center for vSphere code execution Platforms Affected:VMware NSX Data Center for vSphereRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION VMware...
NAME Western Digital MyCloud PR4100 code execution Platforms Affected:Western Digital My Cloud PR4100Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Western Digital MyCloud PR4100...
NAME Jenkins Agent Server Parameter Plugin cross-site scripting Platforms Affected:Jenkins Agent Server Parameter Plugin 1.0Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Agent...
NAME Mozilla Thunderbird code execution Platforms Affected:Mozilla Thunderbird 91.6.0Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mozilla Thunderbird could allow a remote attacker to...
NAME VMware ESXi, Workstation and Fusion code execution Platforms Affected:VMware ESXi 6.5 VMware ESXi 6.7 VMware ESXi 7.0 VMware Cloud...
