Aggregator
奖金池丰厚!淘天电商反爬专项众测活动火热进行中
CVE-2016-4691 | Apple watchOS up to 3.1.2 FontParser memory corruption (HT207487 / Nessus ID 95917)
数据包签名校验的Web安全测试实践
CVE-2007-3138 | Open Solution Quick.Cart 2.2 index.php path traversal (EDB-4025 / XFDB-34687)
SCCM HTTP Looter: Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares
SCCM HTTP Looter Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s) How it works SCCM distribution points (DPs) are the servers used by Microsoft SCCM to host all the...
The post SCCM HTTP Looter: Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares appeared first on Penetration Testing Tools.
下一代SAST |灵脉SAST3.5智能AI漏洞验证技术智慧再升级!
OWASP WrongSecrets: Secrets Management-focused vulnerable app
OWASP WrongSecrets Welcome to the OWASP WrongSecrets p0wnable app. With this app, we have packed various ways of how to not store your secrets. These can help you to realize whether your secret management...
The post OWASP WrongSecrets: Secrets Management-focused vulnerable app appeared first on Penetration Testing Tools.
CVE-2024-3305 | Utarit Information SoliClub up to 4.3.x/5.2.0 on Android/iOS information disclosure
CVE-2024-3306 | Utarit Information SoliClub up to 4.3.x/5.2.0 on Android/iOS authorization
CVE-2024-7961 | Rockwell Automation Pavilion8 path traversal
CVE-2024-6077 | Rockwell Automation 1756-EN4 CIP Security Object denial of service
CVE-2024-7960 | Rockwell Automation Pavilion8 Setting privileges management
CVE-2024-8533 | Rockwell Automation 2800C OptixPanel Compact 4.0.0.325 privileges management
CVE-2024-46688 | Linux Kernel up to 6.10.7 erofs z_erofs_gbuf_growsize memory leak (49c0e0819980/0005e01e1e87)
CVE-2024-46684 | Linux Kernel up to 6.10.7 binfmt_elf_fdpic /proc//auxv create_elf_fdpic_tables buffer size (c507da85e4f8/c6a09e342f8e)
CVE-2024-46681 | Linux Kernel up to 6.10.7 pktgen cpus_read_lock/cpus_read_unlock resource consumption (5f5f7366dda8/979b581e4c69)
CVE-2024-46695 | Linux Kernel up to 6.6.48/6.10.7 NFS File __vfs_setxattr_noperm permission (459584258d47/f71ec019257b/76a0e79bc84f)
CVE-2024-45607 | Secreto31126 whatsapp-api-js up to 4.0.2 WhatsAppAPI.verifyRequestSignature signature verification (GHSA-mwhf-vhr5-7j23)
nightingale: enterprise-level cloud-native monitoring system
Nightingale Nightingale is an enterprise-level cloud-native monitoring system, which can be used as a drop-in replacement for Prometheus for alerting and management. Nightingale is a cloud-native monitoring system by All-In-On design, that supports enterprise-class...
The post nightingale: enterprise-level cloud-native monitoring system appeared first on Penetration Testing Tools.