Tiny_Tracer – A Pin Tool For Tracing API Calls Etc
A Pin Tool for tracing: API calls, including parameters of selected functions selected instructions: RDTSC, CPUID, INT inline system calls,...
Month: September 2023
Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges
Identity services provider Okta on Friday warned of social engineering attacks orchestrated by threat actors to obtain elevated administrator permissions....
PHPJabbers Business Directory Script index.php SQL injection | CVE-2023-41539
NAME__________PHPJabbers Business Directory Script index.php SQL injectionPlatforms Affected:PHPJabbers Business Directory Script 3.2Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________PHPJabbers Business Directory Script is vulnerable...
Brocade SANnav information disclosure | CVE-2023-31925
NAME__________Brocade SANnav information disclosurePlatforms Affected:Broadcom Brocade SANnav 2.1.0 Broadcom Brocade SANnav 2.2.1 Broadcom Brocade SANnav 2.2.0Risk Level:5.4Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Brocade SANnav...
AffiliateWP Plugin for WordPress security bypass | CVE-2023-4600
NAME__________AffiliateWP Plugin for WordPress security bypassPlatforms Affected:WordPress AffiliateWP Plugin for WordPress 2.14.0Risk Level:4.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________AffiliateWP Plugin for WordPress could allow...
Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software security bypass | CVE-2023-31172
NAME__________Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software security bypassPlatforms Affected:Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet SoftwareRisk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Schweitzer Engineering...
PHPJabbers Business Directory Script preview.php cross-site scripting | CVE-2023-41537
NAME__________PHPJabbers Business Directory Script preview.php cross-site scriptingPlatforms Affected:PHPJabbers Business Directory Script 3.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PHPJabbers Business Directory Script is vulnerable...
Order Tracking Pro Plugin for WordPress cross-site scripting | CVE-2023-4500
NAME__________Order Tracking Pro Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Order Tracking Pro Plugin for WordPress 3.3.6Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Order Tracking...
Order Tracking Pro Plugin for WordPress cross-site scripting | CVE-2023-4471
NAME__________Order Tracking Pro Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Order Tracking Pro Plugin for WordPress 3.3.6Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Order Tracking...
Brocade SANnav information disclosure | CVE-2023-31423
NAME__________Brocade SANnav information disclosurePlatforms Affected:Broadcom Brocade SANnav 2.1.0 Broadcom Brocade SANnav 2.2.1 Broadcom Brocade SANnav 2.2.0Risk Level:5.7Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Brocade SANnav...
i-PRO VI Web Client open redirect | CVE-2023-38574
NAME__________i-PRO VI Web Client open redirectPlatforms Affected:i-PRO VI Web Client 7.9.6Risk Level:4.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________i-PRO VI Web Client could allow a...
Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software security bypass | CVE-2023-31169
NAME__________Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software security bypassPlatforms Affected:Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet SoftwareRisk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Schweitzer Engineering...
i-PRO VI Web Client cross-site scripting | CVE-2023-40705
NAME__________i-PRO VI Web Client cross-site scriptingPlatforms Affected:i-PRO VI Web Client 7.9.6Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________i-PRO VI Web Client is vulnerable to...
Schweitzer Engineering Laboratories SEL-5036 acSELerator Bay Screen Builder Software on Windows directory traversal | CVE-2023-31167
NAME__________Schweitzer Engineering Laboratories SEL-5036 acSELerator Bay Screen Builder Software on Windows directory traversalPlatforms Affected:Schweitzer Engineering Laboratories SEL-5036Risk Level:5.9Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Schweitzer...
WooCommerce PDF Invoice Builder Plugin for WordPress cross-site scripting | CVE-2023-4160
NAME__________WooCommerce PDF Invoice Builder Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WooCommerce PDF Invoice Builder Plugin for WordPress 1.2.90Risk Level:4.8Exploitability:HighConsequences:Cross-Site Scripting...
Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software security bypass | CVE-2023-31170
NAME__________Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software security bypassPlatforms Affected:Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet SoftwareRisk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Schweitzer Engineering...
Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator cross-site request forgery | CVE-2023-31174
NAME__________Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator cross-site request forgeryPlatforms Affected:Schweitzer Engineering Laboratories SEL-5037Risk Level:7.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Schweitzer Engineering Laboratories SEL-5037...
Acronis Agent and Cyber Protect 15 weak security | CVE-2023-41742
NAME__________Acronis Agent and Cyber Protect 15 weak securityPlatforms Affected:Acronis Agent 32035 Acronis Agent 31771 Acronis Agent 31637 Acronis Agent 31596...
Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software SQL injection | CVE-2023-31171
NAME__________Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software SQL injectionPlatforms Affected:Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet SoftwareRisk Level:5.9Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Schweitzer Engineering...
i-PRO VI Web Client cross-site scripting | CVE-2023-40535
NAME__________i-PRO VI Web Client cross-site scriptingPlatforms Affected:i-PRO VI Web Client 7.9.6Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________i-PRO VI Web Client is vulnerable to...
WooCommerce PDF Invoice Builder plugin for WordPress cross-site request forgery | CVE-2023-4161
NAME__________WooCommerce PDF Invoice Builder plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WooCommerce PDF Invoice Builder Plugin for WordPress 1.2.90Risk Level:4.3Exploitability:UnprovenConsequences:Gain...
Acronis Agent information disclosure | CVE-2023-41751
NAME__________Acronis Agent information disclosurePlatforms Affected:Acronis Agent 32035 Acronis Agent 31771 Acronis Agent 31637 Acronis Agent 31596 Acronis Agent 31529 Acronis...
Acronis Agent information disclosure | CVE-2023-41750
NAME__________Acronis Agent information disclosurePlatforms Affected:Acronis Agent 32035 Acronis Agent 31771 Acronis Agent 31637 Acronis Agent 31596 Acronis Agent 31529 Acronis...
Acronis Agent and Cyber Protect 15 information disclosure | CVE-2023-41745
NAME__________Acronis Agent and Cyber Protect 15 information disclosurePlatforms Affected:Acronis Agent 32035 Acronis Agent 31771 Acronis Agent 31637 Acronis Agent 31596...
