/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

www.thezdi.com
| | swordbytes.com
9.8 parsecs away

Travel
| | SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf's Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the "overwolfstore://" URL handler. This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf's Client Application.
| | danaepp.com
16.1 parsecs away

Travel
| | Learn how to write exploits that take advantage of blind command injection vulnerabilities using a time-delayed boolean oracle attack.
| | www.zerodayinitiative.com
5.8 parsecs away

Travel
| | [AI summary] A critical remote code execution vulnerability in SolarWinds Access Rights Manager allows attackers to execute arbitrary code with service account privileges if proper data validation is not enforced.
| | blog.fox-it.com
9.7 parsecs away

Travel
| Fox-IT (part of NCC Group) has uncovered a large-scale exploitation campaign of Citrix NetScalers in a joint effort with the Dutch Institute of Vulnerability Disclosure (DIVD). An adversary appears to have exploited CVE-2023-3519 in an automated fashion, placing webshells on vulnerable NetScalers to gain persistent access. The adversary can execute arbitrary commands with this webshell,...