NEWS

There are no events to display

SERVICES

The main goal of the tool is to provide a simple and quick tool for cyber risk self-assessment. The tool requires two...

The service offers a survey to check the compliance of an organization with the GDPR (General Data Protection...

This service analyses sets of email file in .eml format to identify the unsolicited ones (SPAM). Moreover, the service...

This service collects data related to public available exploits. The database is updated daily through the official...

LATEST CVE

Published Description
CVE-2020-10799
20-03-2020 23:15:00
The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call.
CVE-2020-8139
20-03-2020 21:15:00
A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appending /download to the URL.
CVE-2020-8138
20-03-2020 21:15:00
A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0.1, < 16.0.7, and < 15.0.14 allowed a Server-Side Request Forgery (SSRF) vulnerability when subscribing to a malicious calendar URL.
CVE-2019-15522
20-03-2020 21:15:00
An issue was discovered in LINBIT csync2 through 2.0. csync_daemon_session in daemon.c neglects to force a failure of a hello command when the configuration requires use of SSL.
CVE-2020-8140
20-03-2020 21:15:00
A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment.

Pages

LATEST EXPLOIT

Date Title Platform Author
04-06-2019
IceWarp 10.4.4 - Local File Inclusion php JameelNabbo
03-06-2019
Nvidia GeForce Experience Web Helper - Command Injection windows Rhino Security Labs
03-06-2019
AUO Solar Data Recorder < 1.3.0 - Incorrect Access Control hardware Luca.Chiou
03-06-2019
WordPress Plugin Form Maker 1.13.3 - SQL Injection php Daniele Scanu
03-06-2019
KACE System Management Appliance (SMA) < 9.0.270 - Multiple Vulnerabilities php SlidingWindow

Pages