All posts in Uncategorized

■■■□□ GitLab stored XSS via unrestricted file upload. https://hackerone.com/reports/880099 https://t.me/cKure/5120

■□□□□ Exploit code: EternalBlue suite remade in C/C++ which includes: MS17-010 Exploit, EternalBlue vulnerability detector, DoublePulsar detector and DoublePulsar Shellcode & DLL uploader. https://github.com/bhassani/EternalBlueC https://t.me/cKure/5119

■■■■■ Powershell macro bot with multiple C2 protocols. https://isc.sans.edu/diary/rss/26420 https://t.me/cKure/5118

■■■□□ Open Redirect protection bypass in city-mobil.ru https://hackerone.com/rcity-mobil.ru https://hackerone.com/reports/919241 https://t.me/cKure/5117

■■■□□ Havenly #DataLeak hits darknet. ShinyHunters release all data for free. #DataBreach #Shi#DataLeak hits darknet. ShinyHunters release all data for free. #DataBreach #ShinyHunters https://t.me/cKure/5116

● Yet another website: https://lolz.guru [Rhttps://lolz.guru [Russian / Darknet] https://t.me/cKure/5115

■■■■■ New Web App vulnerability. https://www.acunetix.com/blog/web-security-zone/broken-link-hijacking/ Additional information: https://securityboulevard.com/2020/08/what-is-broken-link-hijacking/https://ift.tt/2Plw2Xg https://t.me/cKure/5114