🚧 Planned Maintenance 🚧
We remind you that the planned work will begin in an hour, at 07:00 UTC. Our team will do our best to complete it as quickly as possible.
Please remember to save your work before this time.
We remind you that the planned work will begin in an hour, at 07:00 UTC. Our team will do our best to complete it as quickly as possible.
Please remember to save your work before this time.
💊2👨💻1
💯 Planned Maintenance completed 💯
Netlas is fully online again and you can get back to your projects! 👾
Netlas is fully online again and you can get back to your projects! 👾
❤2👾2👍1👎1
CVE-2024-56529: Session Fixation in Mailcow, 7.5 rating❗️
The application does not disable old session IDs, which allows a remote attacker to use existing IDs in the victim's browser.
Search at Netlas.io:
👉 Link: https://nt.ls/AuyJw
👉 Dork: http.noscript:"mailcow UI"
Vendor's advisory: https://github.com/mailcow/mailcow-dockerized/security/advisories/GHSA-23c8-4wwr-g3c6
The application does not disable old session IDs, which allows a remote attacker to use existing IDs in the victim's browser.
Search at Netlas.io:
👉 Link: https://nt.ls/AuyJw
👉 Dork: http.noscript:"mailcow UI"
Vendor's advisory: https://github.com/mailcow/mailcow-dockerized/security/advisories/GHSA-23c8-4wwr-g3c6
👍2🔥2👾2
Unauthorized Data Upload in Alibaba Cloud – PoC by Chirag Artani 🔥
A new video is out on our friend’s channel, showcasing the discovery of a fresh vulnerability. The video includes an interesting query and a practical example of exploitation. Don’t miss it! 🔍
We also recommend checking out Chirag Artani’s website and Twitter for more cybersecurity insights:
👉 Website: 3rag.com
👉 Twitter: x.com/Chirag99Artani
A new video is out on our friend’s channel, showcasing the discovery of a fresh vulnerability. The video includes an interesting query and a practical example of exploitation. Don’t miss it! 🔍
We also recommend checking out Chirag Artani’s website and Twitter for more cybersecurity insights:
👉 Website: 3rag.com
👉 Twitter: x.com/Chirag99Artani
YouTube
I found 9322 Targets For Unauthorized Data Upload In Alibaba Cloud | POC Exploit Explained Live
Note: do not harm any server, do not upload any malicious files like malware or anything. This is high severity bug which is leading to upload unauthorized data.
I found 9321 targets which are vulnerable for this vulnerability. This is just for learning…
I found 9321 targets which are vulnerable for this vulnerability. This is just for learning…
❤3👾3
CVE-2025-0890, -40890, -40891: Vulnerabilities in Zyxel CPE, 8.8 - 9.8 rating 🔥
The vulnerabilities include two OS Command Injections, and Improper Authentication via Telnet.
Search at Netlas.io:
👉 Link: https://nt.ls/Lxf7h
👉 Dork: telnet.banner:"Zyxel VDSL"
Vendor's advisory: https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-command-injection-and-insecure-default-credentials-vulnerabilities-in-certain-legacy-dsl-cpe-02-04-2025
The vulnerabilities include two OS Command Injections, and Improper Authentication via Telnet.
Search at Netlas.io:
👉 Link: https://nt.ls/Lxf7h
👉 Dork: telnet.banner:"Zyxel VDSL"
Vendor's advisory: https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-command-injection-and-insecure-default-credentials-vulnerabilities-in-certain-legacy-dsl-cpe-02-04-2025
🔥4👍3👾2
CVE-2024-13487: Code Injection in The CURCY WooCommerce Plugin, 7.3 rating❗️
The vulnerability allows unauthenticated users to execute arbitrary shortcodes into popular free currency exchange plugin.
Search at Netlas.io:
👉 Link: https://nt.ls/QhoHC
👉 Dork: http.body:"plugins/woo-multi-currency"
Read more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/woo-multi-currency/curcy-multi-currency-for-woocommerce-225-unauthenticated-arbitrary-shortcode-execution-via-get-products-price-function
The vulnerability allows unauthenticated users to execute arbitrary shortcodes into popular free currency exchange plugin.
Search at Netlas.io:
👉 Link: https://nt.ls/QhoHC
👉 Dork: http.body:"plugins/woo-multi-currency"
Read more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/woo-multi-currency/curcy-multi-currency-for-woocommerce-225-unauthenticated-arbitrary-shortcode-execution-via-get-products-price-function
👍3👾3
🚧 Storage Maintenance 🚧
We are currently performing maintenance to scale up storage capacity. The private scanner may be unavailable for the next 24-48 hours. The Netlas team apologizes for the inconvenience.
We will do our best to complete it as quickly as possible.
We are currently performing maintenance to scale up storage capacity. The private scanner may be unavailable for the next 24-48 hours. The Netlas team apologizes for the inconvenience.
We will do our best to complete it as quickly as possible.
👌2👨💻2
Netlas vs Censys: A Comprehensive Analysis 🧮
A new article in our series of comparisons with competitors.
This time we evaluated the pros and cons of Censys, which proved to be the strongest of our opponents. However, we tried to evaluate both search engines as honestly as possible, using 10+ key indicators.
👉 Read now: https://netlas.io/blog/netlas_vs_censys/
A new article in our series of comparisons with competitors.
This time we evaluated the pros and cons of Censys, which proved to be the strongest of our opponents. However, we tried to evaluate both search engines as honestly as possible, using 10+ key indicators.
👉 Read now: https://netlas.io/blog/netlas_vs_censys/
netlas.io
Netlas vs Censys - Netlas Blog
Compare IoT search engines Netlas and Censys, highlighting their features, strengths, and ideal use cases for security research.
👍4👾4❤3
CVE-2025-25064, -25065: Two vulnerabilities in Zimbra, 5.3 - 9.8 rating 🔥
Vulnerabilities include SQL injection and SSRF, which could potentially lead to RCE. We recommend installing the latest patches as soon as possible.
Search at Netlas.io:
👉 Link: https://nt.ls/nehV7
👉 Dork: http.favicon.hash_sha256:1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637 OR \*.banner:"Zimbra"
Vendor's advisory: https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
Vulnerabilities include SQL injection and SSRF, which could potentially lead to RCE. We recommend installing the latest patches as soon as possible.
Search at Netlas.io:
👉 Link: https://nt.ls/nehV7
👉 Dork: http.favicon.hash_sha256:1afd891aacc433e75265e3ddc9cb4fc63b88259977811384426c535037711637 OR \*.banner:"Zimbra"
Vendor's advisory: https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
🔥3👾2
CVE-2025-22467: RCE in Ivanti Connect Secure, 9.9 rating 🔥🔥🔥
A stack-based buffer overflow in Ivanti Connect Secure allows a remote authenticated attacker to achieve remote code execution.
Search at Netlas.io:
👉 Link: https://nt.ls/WojuE
👉 Dork: http.body:"welcome.cgi?p=logo"
Vendor's advisory: https://forums.ivanti.com/s/article/February-Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-and-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs?language=en_US
A stack-based buffer overflow in Ivanti Connect Secure allows a remote authenticated attacker to achieve remote code execution.
Search at Netlas.io:
👉 Link: https://nt.ls/WojuE
👉 Dork: http.body:"welcome.cgi?p=logo"
Vendor's advisory: https://forums.ivanti.com/s/article/February-Security-Advisory-Ivanti-Connect-Secure-ICS-Ivanti-Policy-Secure-IPS-and-Ivanti-Secure-Access-Client-ISAC-Multiple-CVEs?language=en_US
🔥6👍2👾1
CVE-2025-0376 and other: Multiple vulnerabilitites in GitLab, 4.2 - 8.7 rating❗️
With the new release, GitLab has disclosed several vulnerabilities, including XSS injection, DoS and others.
Search at Netlas.io:
👉 Link: https://nt.ls/50gFr
👉 Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:"gitlab" OR http.headers.location:"gitlab"
Vendor's advisory: https://about.gitlab.com/releases/2025/02/12/patch-release-gitlab-17-8-2-released/
With the new release, GitLab has disclosed several vulnerabilities, including XSS injection, DoS and others.
Search at Netlas.io:
👉 Link: https://nt.ls/50gFr
👉 Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:"gitlab" OR http.headers.location:"gitlab"
Vendor's advisory: https://about.gitlab.com/releases/2025/02/12/patch-release-gitlab-17-8-2-released/
🔥3👾3👍1
CVE-2025-1094: Improper Neutralization of Quoting Syntax in PostgreSQL functions, 8.1 rating❗️
A vulnerability in some functions of the libpq library allows SQL injection.
Search at Netlas.io:
👉 Link: https://nt.ls/EtVPc
👉 Dork: postgres:*
Vendor's advisory: https://www.postgresql.org/support/security/CVE-2025-1094/
A vulnerability in some functions of the libpq library allows SQL injection.
Search at Netlas.io:
👉 Link: https://nt.ls/EtVPc
👉 Dork: postgres:*
Vendor's advisory: https://www.postgresql.org/support/security/CVE-2025-1094/
🔥3❤2👾2
CVE-2024-12562: Deserialization of Untrusted Data in s2member Pro WordPress Plugin, 9.8 rating 🔥
The vulnerability allows attackers to inject PHP Object on all versions of the plugin, except the latest.
Search at Netlas.io:
👉 Link: https://nt.ls/GqND6
👉 Dork: http.body:"plugins/s2member"
Read more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/s2member-pro/s2member-pro-241216-unauthenticated-php-object-injection
The vulnerability allows attackers to inject PHP Object on all versions of the plugin, except the latest.
Search at Netlas.io:
👉 Link: https://nt.ls/GqND6
👉 Dork: http.body:"plugins/s2member"
Read more: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/s2member-pro/s2member-pro-241216-unauthenticated-php-object-injection
👍2🔥2👾1
CVE-2025-26465, -26466: Two vulnerabilities in OpenSSH, 6.8 rating❗️
MitM and DoS in OpenSSH. The severity level is medium, but the vulnerabilities cover many versions: from 2013 for -26465 and from 2023 for -26466.
Search at Netlas.io:
👉 Link: https://nt.ls/1TTrj
👉 Dork: ssh.server_key_exchange.client_to_server_compression:"zlib@openssh.com"
Read more: https://blog.qualys.com/vulnerabilities-threat-research/2025/02/18/qualys-tru-discovers-two-vulnerabilities-in-openssh-cve-2025-26465-cve-2025-26466
MitM and DoS in OpenSSH. The severity level is medium, but the vulnerabilities cover many versions: from 2013 for -26465 and from 2023 for -26466.
Search at Netlas.io:
👉 Link: https://nt.ls/1TTrj
👉 Dork: ssh.server_key_exchange.client_to_server_compression:"zlib@openssh.com"
Read more: https://blog.qualys.com/vulnerabilities-threat-research/2025/02/18/qualys-tru-discovers-two-vulnerabilities-in-openssh-cve-2025-26465-cve-2025-26466
🔥3👍2👾1
🔐 Track Adversary Infrastructure Challenge
Join the challenge by Netlas and RST Cloud to improve your threat-hunting skills.
- Learn to detect C2 servers and investigate real threats.
- Compete for prizes: 🏆 $1000, 🥈 $500, 🥉 $250.
- Top 10 winners receive Netlas Annual Business Subnoscription and RST IoC Lookup Subnoscription.
- All participants get a certificate of completion.
- Free 1-month access to Netlas for practice.
💡 What’s included:
- Webinar on threat intelligence and C2 tracking.
- Hands-on challenge with Netlas and RST Cloud tools.
- Discord community for support and collaboration.
👉 Invite a friend to team up and participate: https://netlas.io/promo/ti-challenge/
Join the challenge by Netlas and RST Cloud to improve your threat-hunting skills.
- Learn to detect C2 servers and investigate real threats.
- Compete for prizes: 🏆 $1000, 🥈 $500, 🥉 $250.
- Top 10 winners receive Netlas Annual Business Subnoscription and RST IoC Lookup Subnoscription.
- All participants get a certificate of completion.
- Free 1-month access to Netlas for practice.
💡 What’s included:
- Webinar on threat intelligence and C2 tracking.
- Hands-on challenge with Netlas and RST Cloud tools.
- Discord community for support and collaboration.
👉 Invite a friend to team up and participate: https://netlas.io/promo/ti-challenge/
netlas.io
Track Adversary Infrastructure Challenge with Netlas & RST Cloud – Hunt, Learn, Win! - Netlas
Join the ultimate threat intelligence challenge! Hunt hacker infrastructure with Netlas, win cash prizes, and get exclusive Netlas & RST Cloud subnoscriptions.
👾5❤4🔥3
CVE-2025-23209: Code Injection in CraftCMS, 8.1 rating❗️
Craft CMS contains a code injection vulnerability that allows for remote code execution as vulnerable versions have compromised user security keys.
Search at Netlas.io:
👉 Link: https://nt.ls/brxoj
👉 Dork: http.headers.x_powered_by:"Craft CMS"
Vendor's advisory: https://github.com/craftcms/cms/security/advisories/GHSA-x684-96hh-833x
Craft CMS contains a code injection vulnerability that allows for remote code execution as vulnerable versions have compromised user security keys.
Search at Netlas.io:
👉 Link: https://nt.ls/brxoj
👉 Dork: http.headers.x_powered_by:"Craft CMS"
Vendor's advisory: https://github.com/craftcms/cms/security/advisories/GHSA-x684-96hh-833x
❤2🔥2👾2
CVE-2025-26794: SQL Injection in Exim 4.98, 7.5 rating❗️
A vulnerability in the Exim mail transfer agent could allow a remote attacker to perform SQL injection.
Search at Netlas.io:
👉 Link: https://nt.ls/ge4Iy
👉 Dork: smtp.banner:"Exim 4.98"
Vendor's advisory: https://www.exim.org/static/doc/security/CVE-2025-26794.txt
A vulnerability in the Exim mail transfer agent could allow a remote attacker to perform SQL injection.
Search at Netlas.io:
👉 Link: https://nt.ls/ge4Iy
👉 Dork: smtp.banner:"Exim 4.98"
Vendor's advisory: https://www.exim.org/static/doc/security/CVE-2025-26794.txt
👾3🔥2👍1
CVE-2025-1128: RCE in Everest Forms WordPress Plugin, 9.8 rating 🔥
The vulnerability allows an unauthenticated attacker to perform a wide range of actions with the site: upload arbitrary files, RCE, delete config files.
Search at Netlas.io:
👉 Link: https://nt.ls/q6pgJ
👉 Dork: http.body:"plugins/everest-forms"
Read more: https://www.wordfence.com/blog/2025/02/100000-wordpress-sites-affected-by-arbitrary-file-upload-read-and-deletion-vulnerability-in-everest-forms-wordpress-plugin/
The vulnerability allows an unauthenticated attacker to perform a wide range of actions with the site: upload arbitrary files, RCE, delete config files.
Search at Netlas.io:
👉 Link: https://nt.ls/q6pgJ
👉 Dork: http.body:"plugins/everest-forms"
Read more: https://www.wordfence.com/blog/2025/02/100000-wordpress-sites-affected-by-arbitrary-file-upload-read-and-deletion-vulnerability-in-everest-forms-wordpress-plugin/
🔥3👾2👍1
CVE-2025-24752: XSS in Elementor Page Builder, 7.1 rating❗️
Reflected XSS in a large number of sites. Thanks to our friend Chirag Artani for suggesting the query!
Search at Netlas.io:
👉 Link: https://nt.ls/8wpei
👉 Dork: http.body:"plugins/elementor" AND host_type:domain
Read more: https://patchstack.com/articles/reflected-xss-patched-in-essential-addons-for-elementor-affecting-2-million-sites/
Reflected XSS in a large number of sites. Thanks to our friend Chirag Artani for suggesting the query!
Search at Netlas.io:
👉 Link: https://nt.ls/8wpei
👉 Dork: http.body:"plugins/elementor" AND host_type:domain
Read more: https://patchstack.com/articles/reflected-xss-patched-in-essential-addons-for-elementor-affecting-2-million-sites/
👾4❤2
CVE-2025-20029: Command Injection in F5 BIG-IP, 8.8 rating❗️
The vulnerability allows an attacker to escalate privileges, execute arbitrary commands, and manipulate system files. Not the latest vulnerability, but the PoC was published just recently!
Search at Netlas.io:
👉 Link: https://nt.ls/e17gN
👉 Dork: http.headers.server:"BigIP"
Vendor's advisory: https://my.f5.com/manage/s/article/K000148587
The vulnerability allows an attacker to escalate privileges, execute arbitrary commands, and manipulate system files. Not the latest vulnerability, but the PoC was published just recently!
Search at Netlas.io:
👉 Link: https://nt.ls/e17gN
👉 Dork: http.headers.server:"BigIP"
Vendor's advisory: https://my.f5.com/manage/s/article/K000148587
❤3🔥2👾1