Node.js gopeeker code execution |
NAME Node.js gopeeker code execution Platforms Affected:Node.js gopeekerRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js gopeeker could allow a remote attacker to execute...
Month: August 2022
Jenkins Job Configuration History Plugin cross-site scripting | CVE-2022-38664
NAME Jenkins Job Configuration History Plugin cross-site scripting Platforms Affected:Jenkins Job Configuration History Plugin 1165.v8cc9fd1f4597Risk Level:8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Jenkins Job...
Mozilla Firefox and Thunderbird code execution | CVE-2022-38476
NAME Mozilla Firefox and Thunderbird code execution Platforms Affected:Mozilla Firefox ESR 102.1 Mozilla Thunderbird 102.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mozilla Firefox...
Node.js @raman_mg03/web-pkg module code execution |
NAME Node.js @raman_mg03/web-pkg module code execution Platforms Affected:Node.js @raman_mg03/web-pkgRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @raman_mg03/web-pkg module could allow a remote attacker...
Node.js ngx-infinite-scroll-fixed module code execution |
NAME Node.js ngx-infinite-scroll-fixed module code execution Platforms Affected:Node.js ngx-infinite-scroll-fixedRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js Node.js ngx-infinite-scroll-fixed module could allow a remote...
Personnel Property Equipment username SQL injection |
NAME Personnel Property Equipment username SQL injection Platforms Affected:Trickcode Personnel Property Management 2015 Trickcode Personnel Property Management 2016 Trickcode Personnel...
Mozilla Firefox code execution | CVE-2022-38477
NAME Mozilla Firefox code execution Platforms Affected:Mozilla Firefox 103 Mozilla Firefox ESR 102.1 Mozilla Thunderbird 102.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Mozilla...
Crow code execution | CVE-2022-38667
NAME Crow code execution Platforms Affected:CrowCpp Crow 1.0+4Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Crow could allow a remote attacker to execute arbitrary...
Node.js some-plugin module code execution |
NAME Node.js some-plugin module code execution Platforms Affected:Node.js some-pluginRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js some-plugin module could allow a remote attacker...
Node.js amplitude-ts module code execution |
NAME Node.js amplitude-ts module code execution Platforms Affected:Node.js amplitude-tsRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js amplitude-ts module could allow a remote attacker...
MA Lighting grandMA2 Light default account | CVE-2022-30036
NAME MA Lighting grandMA2 Light default account Platforms Affected:MA Lighting grandMA2 LightRisk Level:8.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION MA Lighting grandMA2 Light contains...
Node.js fobux code execution |
NAME Node.js fobux code execution Platforms Affected:Node.js fobuxRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js fobux could allow a remote attacker to execute...
Node.js @illuvium/illuvium-design module code execution |
NAME Node.js @illuvium/illuvium-design module code execution Platforms Affected:Node.js @illuvium/illuvium-designRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js @illuvium/illuvium-design module could allow a remote attacker...
Node.js usaa-template-mocks-aggregate module code execution |
NAME Node.js usaa-template-mocks-aggregate module code execution Platforms Affected:Node.js usaa-template-mocks-aggregateRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js usaa-template-mocks-aggregate module could allow a remote attacker...
Node.js some-buidler-plugin module code execution |
NAME Node.js some-buidler-plugin module code execution Platforms Affected:Node.js some-buidler-pluginRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js some-buidler-plugin module could allow a remote attacker...
Node.js hardhat-cover code execution |
NAME Node.js hardhat-cover code execution Platforms Affected:Node.js hardhat-coverRisk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION Node.js hardhat-cover could allow a remote attacker to execute...
wkhtmlTOpdf server-side request forgery | CVE-2022-35583
NAME wkhtmlTOpdf server-side request forgery Platforms Affected:wkhtmlTOpdf wkhtmlTOpdf 0.12.6Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION wkhtmlTOpdf is vulnerable to server-side request forgery. By...
VMware fixed a privilege escalation issue in VMware Tools
VMware this week released patches to address an important-severity vulnerability in the VMware Tools suite of utilities. The virtualization giant...
France hospital Center Hospitalier Sud Francilien suffered ransomware attack
A French hospital, the Center Hospitalier Sud Francilien (CHSF), suffered a cyberattack on Sunday and was forced to refer patients...
Daily Vulnerability Trends: Wed Aug 24 2022
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-23747In Sony Xperia series 1, 5, and Pro, an out of bound...
Microsoft publicly discloses details on critical ChromeOS flaw
Microsoft shared technical details of a critical ChromeOS flaw that could be exploited to trigger a DoS condition or for...
Cobalt Stike Beacon Detected – 23[.]234[.]200[.]96:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 39[.]107[.]79[.]56:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 104[.]225[.]158[.]93:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
