[webapps] MyBB 1.8.32 – Remote Code Execution (RCE) (Authenticated)
MyBB 1.8.32 – Remote Code Execution (RCE) (Authenticated)
MyBB 1.8.32 – Remote Code Execution (RCE) (Authenticated)
ManageEngin AMP 4.3.0 – File-path-traversal
Microsoft Exchange Active Directory Topology 15.02.1118.007 – ‘Service MSExchangeADTopology’ Unquoted Service Path
Active eCommerce CMS 6.5.0 – Stored Cross-Site Scripting (XSS)
CMLoot was created to easily find interesting files stored on System Center Configuration Manager (SCCM/CM) SMB shares. The shares are used for distributing software to Windows clients in Windows enterprise environments and can contains scripts/confi…
Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data. It is useful both for offensive and defensive security testing. Key features: It supports scanning files, directories, and the entire history of Git…
Microsoft has patched a misconfiguration issue impacting the Azure Active Directory (AAD) identity and access management service that exposed several “high-impact” applications to unauthorized access.
“One of these apps is a content management system (…
Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by various threat actors in hacks targeting unpatched systems.
This entails the abuse of CVE-2022-46169 (CVSS score: 9.8) and CVE-2021-35394 (CVSS score: 9.8) to deliv…