Aggregator
Simplifying Linux File Permissions
3 months ago
CVE-2018-4442 | Apple iCloud up to 7.8.1 on Windows WebK it memory corruption (HT209346 / EDB-46183)
3 months ago
A vulnerability, which was classified as critical, was found in Apple iCloud up to 7.8.1 on Windows. Affected is an unknown function of the component WebK it. The manipulation leads to memory corruption.
This vulnerability is traded as CVE-2018-4442. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2012-6529 | Marinet Marinet CMS galleryphoto.php roomid sql injection (EDB-36536 / XFDB-72272)
3 months ago
A vulnerability was found in Marinet Marinet CMS. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file galleryphoto.php. The manipulation of the argument roomid leads to sql injection.
This vulnerability is known as CVE-2012-6529. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Unlock the Full Potential of the Wayback Machine for Bug Bounty
3 months ago
Unlock the Full Potential of the Wayback Machine for Bug Bounty
3 months ago
CVE-2006-0053 | Tony Cook Imager up to 0.49 resource management (EDB-27581 / Nessus ID 22570)
3 months ago
A vulnerability, which was classified as problematic, was found in Tony Cook Imager up to 0.49. Affected is an unknown function. The manipulation leads to improper resource management.
This vulnerability is traded as CVE-2006-0053. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 30
3 months ago
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Gmail For Exfiltration: Malicious npm Packages Target Solana Private Keys and Drain Victims’ Wallets Threat Bulletin: Weaponized Software Targets Chinese-Speaking Organizations Mass Campaign of Murdoc Botnet Mirai: A New Variant of Corona Mirai Sophos MDR […]
Pierluigi Paganini
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 30
3 months ago
SECURITY AFFAIRS MALWARE NEWSLETTE
[Meachines] [Easy] Academy Laravel-RCE+TRP00F权限提升+audit服务日志权限提升+composer权限提升
3 months ago
#Laravel-RCE #TRP00F权限提升 #audit服务日志权限提升 #composer权限提升
Security Affairs newsletter Round 508 by Pierluigi Paganini – INTERNATIONAL EDITION
3 months ago
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Subaru Starlink flaw allowed experts to remotely hack cars Participants in the Pwn2Own Automotive 2025 earned $886,250 U.S. […]
Pierluigi Paganini
Security Affairs newsletter Round 508 by Pierluigi Paganini – INTERNATIONAL EDITION
3 months ago
SECURITY AFFAIRS MALWARE NEWSLETTE
CVE-2015-1579 | Elegant Themes Divi on WordPress wp-admin/admin-ajax.php img path traversal (EDB-36039)
3 months ago
A vulnerability has been found in Elegant Themes Divi on WordPress and classified as problematic. This vulnerability affects unknown code of the file wp-admin/admin-ajax.php. The manipulation of the argument img leads to path traversal.
This vulnerability was named CVE-2015-1579. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2014-1632 | Eventum up to 2.3.4 htdocs/setup/index.php hostname permission (EDB-39066 / ID 12843)
3 months ago
A vulnerability was found in Eventum up to 2.3.4. It has been rated as critical. Affected by this issue is some unknown functionality of the file htdocs/setup/index.php. The manipulation of the argument hostname as part of Parameter leads to permission issues.
This vulnerability is handled as CVE-2014-1632. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Bombon 方法论:我将如何测试Web缓存漏洞
3 months ago
Web缓存漏洞是指由于缓存机制配置或实现不当,导致攻击者可通过操纵缓存内容获取敏感信息、篡改数据或破坏服务安全性的安全风险。
CVE-2005-4703 | Apache Tomcat 4.0.3 Error Message denial of service (EDB-31551 / XFDB-9394)
3 months ago
A vulnerability classified as problematic was found in Apache Tomcat 4.0.3. This vulnerability affects unknown code of the component Error Message Handler. The manipulation leads to denial of service.
This vulnerability was named CVE-2005-4703. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Leaving company but want to keep some files
3 months ago
CVE-2016-1743 | Apple Mac OS X up to 10.11.3 Intel Graphics Driver memory corruption (HT206167 / EDB-39675)
3 months ago
A vulnerability was found in Apple Mac OS X up to 10.11.3 and classified as critical. This issue affects some unknown processing of the component Intel Graphics Driver. The manipulation leads to memory corruption.
The identification of this vulnerability is CVE-2016-1743. Local access is required to approach this attack. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2020-11749 | Pandora FMS 7.0 SNMP cross site scripting (EDB-48707)
3 months ago
A vulnerability was found in Pandora FMS 7.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component SNMP. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2020-11749. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
INE Security Alert: Expediting CMMC 2.0 Compliance
3 months ago
Cary, North Carolina, 26th January 2025, CyberNewsWire
The post INE Security Alert: Expediting CMMC 2.0 Compliance appeared first on Security Boulevard.
cybernewswire