Aggregator

公司简介 | 我要投稿

胡金鱼

A vulnerability has been found in PHPEcho CMS up to 2.0-rc3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument id leads to sql injection. This vulnerability is known as CVE-2008-0355. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Galaxyscripts Mini File Host up to 1.2.1 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument language leads to path traversal. This vulnerability is handled as CVE-2008-0357. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in Instituto Politicnico Nacional GradMan 0.1.3. Affected is an unknown function of the file agregar_info.php. The manipulation of the argument tabla leads to path traversal. This vulnerability is traded as CVE-2008-0361. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in MyBB. This vulnerability affects unknown code of the file forumdisplay.php. The manipulation of the argument sortby leads to code injection. This vulnerability was named CVE-2008-0382. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in php-residence 0.7.2/1.0. This issue affects some unknown processing of the file visualizza_tabelle.php. The manipulation of the argument cognome_cerca leads to sql injection. The identification of this vulnerability is CVE-2008-0353. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Pixelpost 1.7. It has been classified as critical. This affects an unknown part of the file index.php. The manipulation of the argument parent_id leads to sql injection. This vulnerability is uniquely identified as CVE-2008-0358. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Внешне легитимное приложение скрывает опасный бэкдор, крадущий данные.

10月18日，上海五角场凯悦酒店

When it comes to healthcare data security, HIPAA is the name everyone knows. It’s been around for decades, laying down the law on handling patient information. But what if I told you there’s another player in town? I’m talking about the HICP—the “Health Industry Cybersecurity Practices” publication. If you haven’t heard of it, you’re not […]

The post HICP vs. HIPAA: Understanding the Differences and Their Impact on Healthcare Compliance appeared first on Centraleyes.

The post HICP vs. HIPAA: Understanding the Differences and Their Impact on Healthcare Compliance appeared first on Security Boulevard.

A vulnerability was found in inzeratyzdarma Ads Free. Cz advert 1.4. It has been classified as critical. Affected is an unknown function of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is traded as CVE-2014-7668. Access to the local network is required for this attack. There is no exploit available.

error code: 521

Hi Everyone! Welcome back! It’s been a while since I’ve written a blog, so I deci

A suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance (CSA) a zero-day to perform a series of malicious actions. That's according to findings from Fortinet FortiGuard Labs, which said the vulnerabilities were abused to gain unauthenticated access to the CSA, enumerate users configured in the appliance, and attempt to access the

A vulnerability was found in AfterLogic MailBee WebMail Pro 4.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file download_view_attachment.aspx. The manipulation of the argument temp_filename leads to path traversal. This vulnerability is known as CVE-2008-0333. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in MiniWeb HTTP Server 0.8.19. This issue affects the function _mwprocessreadsocket of the file http.c. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2008-0337. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in MiniWeb HTTP Server 0.8.19. Affected is the function mwgetlocalfilename of the file http.c. The manipulation leads to path traversal. This vulnerability is traded as CVE-2008-0338. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Alilg aliTalk 1.9.1.1. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument username leads to sql injection. The identification of this vulnerability is CVE-2008-0371. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Alilg aliTalk 1.9.1.1. It has been classified as critical. This affects an unknown part. The manipulation of the argument lilil leads to improper authentication. This vulnerability is uniquely identified as CVE-2008-0391. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.