Company Name: b'Tor' Company HackerOne URL: https://hackerone.com/torproject Submitted By:b'0xspade'Link to Submitters Profile:https://hackerone.com/b'0xspade' Report Title:b' No Rate Limitting on Login Form'Report...
Company Name: b'Tor' Company HackerOne URL: https://hackerone.com/torproject Submitted By:b'zerx'Link to Submitters Profile:https://hackerone.com/b'zerx' Report Title:b'Zip bomb'Report Link:https://hackerone.com/reports/263663Date Submitted:28 November 2023 A...
Company Name: b'Tor' Company HackerOne URL: https://hackerone.com/torproject Submitted By:b'newfunction'Link to Submitters Profile:https://hackerone.com/b'newfunction' Report Title:b'Potential IP revealing using UNC Path in...
Company Name: b'Tor' Company HackerOne URL: https://hackerone.com/torproject Submitted By:b'wiloos'Link to Submitters Profile:https://hackerone.com/b'wiloos' Report Title:b'SQL Injection in parameter REPORT'Report Link:https://hackerone.com/reports/269347Date Submitted:28...
Company Name: b'Tor' Company HackerOne URL: https://hackerone.com/torproject Submitted By:b'geeknik'Link to Submitters Profile:https://hackerone.com/b'geeknik' Report Title:b'Use of unitialized value in crypto_pk_num_bits (src/common/crypto.c:971)'Report...
Juniper Releases Security Advisory for Juniper Secure Analytics Juniper released a security advisory to address multiple vulnerabilities affecting Juniper Secure...
CISA Releases The Mitigation Guide: Healthcare and Public Health (HPH) Sector Today, CISA released the Mitigation Guide: Healthcare and Public...
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on November 21, 2023. These...
CISA Requests Comment on Draft Secure Software Development Attestation Form CISA has opened a 30-day Federal Register notice to receive...
Citrix Releases Security Updates for Citrix Hypervisor Citrix has released security updates addressing vulnerabilities in Citrix Hypervisor 8.2 CU1 LTSR....
CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development Today, in a landmark collaboration, the U.S. Cybersecurity...
Adobe Releases Security Updates for ColdFusion On Nov. 14, 2023, Adobe released security updates addressing vulnerabilities affecting unpatched ColdFusion software....
CISA, FBI, MS-ISAC, and ASD’s ACSC Release Advisory on LockBit Affiliates Exploiting Citrix Bleed Today, the Cybersecurity and Infrastructure Security...
Mozilla Releases Security Updates for Firefox and Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox and Thunderbird....
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
The Information provided at the time of posting was detected as "Brute Ratel C4". Depending on when you are viewing...
NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of the files...
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
NAME__________Legal Pages Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress WP EXtra Plugin for WordPress 6.4Risk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Legal Pages Plugin for...
NAME__________WP EXtra Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP EXtra Plugin for WordPress 6.4Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WP EXtra Plugin...
NAME__________eCommerce Product Catalog Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress eCommerce Product Catalog Plugin for WordPress 3.3.26Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________eCommerce Product...
NAME__________m-privacy mprivacy-tools security bypassPlatforms Affected:m-privacy GmbH mprivacy-toolsRisk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________m-privacy mprivacy-tools could allow a remote attacker to bypass security restrictions,...
NAME__________Call Button Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Quick Call Button Plugin for WordPress 1.2.9Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Call Button Plugin...
NAME__________Email Encoder Bundle Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Email Encoder Bundle Plugin for WordPress 2.1.8Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Email Encoder...
