XWiki is a generic wiki platform. In versions starting from 1.8 and prior to 15.10.16, 16.4.6, and 16.10.1, it is possible for a remote unauthenticated user to escape from the HQL execution context and perform a blind SQL injection to execute arbitrary SQL statements on the database backend, including when "Prevent unregistered users from viewing pages, regardless of the page rights" and "Prevent unregistered users from editing pages, regardless of the page rights" options are enabled. Depending on the used database backend, the attacker may be able to not only obtain confidential information such as password hashes from the database, but also execute UPDATE/INSERT/DELETE queries. This issue has been patched in versions 16.10.1, 16.4.6 and 15.10.16. There is no known workaround, other than upgrading XWiki.
#TRACK

RansomLook is an open-source project aimed at assisting users in tracking ransomware-related posts and activities across various sites, forums, and Telegram channels.

Ransomwatch trails the extortion sites used by ransomware groups and surfaces an aggregated feed of claims.

Displays images from hundreds of webcams, cameras around the world, including a description of the web cam location. and Displays worldwide webcam images on the Google map.

An OpenStreetMap-based project for creating a map of the world's railway infrastructure.

Worldwide live positions of trains, busses, trams and other public transport vehicles. Find out if your train is on time and see where it is located right now.

This site displays telemetry from Amateur Radio high-altitude balloon launches, using the SondeHub-Amateur database.

Live Flight Tracker and Airport Status.

Ransomwhere is the open, crowdsourced ransomware payment tracker. Browse and download ransomware payment data or help build our dataset by reporting ransomware demands you have received.

Live view of SpaceX starlink satellite constellation and coverage.