Hundreds of ScriptCase web apps are vulnerable to two bugs that allow attackers to reset passwords and inject malicious commands without needing to authenticate.

campuscodi@mastodon.social

According to VulnCheck, exploitation is simple and only requires a few curl commands.

ScriptCase - Hunt It, Exploit It, Defend It | Blog | VulnCheck

A month after disclosure, hundreds of ScriptCase servers remain exposed and actively targeted. This post walks through finding vulnerable instances, exploiting them with just a few curl commands, and the key detection points defenders can use to stop attacks.

VulnCheck (www.vulncheck.com)

Citiverse

Navigazione

Account

Navigazione

Account

Hundreds of ScriptCase web apps are vulnerable to two bugs that allow attackers to reset passwords and inject malicious commands without needing to authenticate.

ScriptCase - Hunt It, Exploit It, Defend It | Blog | VulnCheck

Sempre nel mio cuore, in qualche modo.

Ponte Morandi: “Soltanto il crollo avrà la sentenza, il resto prescritto”.

#Autostrade, scaricati 7 miliardi sullo Stato con le quote ai #Benetton.

NFC-relay attacks, which I've been breathlessly warning about for a year, have now expanded to Brazil

Porticciolo al tramonto

2025 One Hertz Challenge: Blinking An LED With The Aid Of Radio Time

Cos'è questa novità?

Alla fine sono riuscito a configurare i driver wifi broadcom su debian 13.