Aggregator

CVE-2006-5314 | Phplibre TribunaLibre 3.12 Beta ftag.php mostrar file inclusion (EDB-2501 / XFDB-29415)

1 month 3 weeks ago

A vulnerability marked as critical has been reported in Phplibre TribunaLibre 3.12 Beta. This affects an unknown part of the file ftag.php. The manipulation of the argument mostrar leads to file inclusion. This vulnerability is documented as CVE-2006-5314. The attack can be initiated remotely. Additionally, an exploit exists.

vuldb.com

CVE-2006-5315 | Phplibre registroTL 0.1b/0.5b main.php page file inclusion (EDB-2502 / XFDB-29428)

Vuldb Updates

1 month 3 weeks ago

A vulnerability described as critical has been identified in Phplibre registroTL 0.1b/0.5b. This vulnerability affects unknown code of the file main.php. The manipulation of the argument page results in file inclusion. This vulnerability is reported as CVE-2006-5315. The attack can be launched remotely. Moreover, an exploit is present.

vuldb.com

CVE-2006-5316 | Phplibre registroTL 0.1b/0.5b usuarios.dat information disclosure (EDB-2502)

Vuldb Updates

1 month 3 weeks ago

A vulnerability classified as problematic has been found in Phplibre registroTL 0.1b/0.5b. This issue affects some unknown processing of the file usuarios.dat. This manipulation causes information disclosure. This vulnerability appears as CVE-2006-5316. The attack may be initiated remotely. In addition, an exploit is available.

vuldb.com

CVE-2006-5317 | Jhjgubbels eboli index.php contentSpecial file inclusion (EDB-2504 / XFDB-29442)

Vuldb Updates

1 month 3 weeks ago

A vulnerability classified as critical was found in Jhjgubbels eboli. Impacted is an unknown function of the file index.php. Such manipulation of the argument contentSpecial leads to file inclusion. This vulnerability is traded as CVE-2006-5317. The attack may be launched remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2006-5318 | Nayco JASmine index.php section file inclusion (EDB-2505 / XFDB-29423)

Vuldb Updates

1 month 3 weeks ago

A vulnerability, which was classified as critical, has been found in Nayco JASmine. The affected element is an unknown function of the file index.php. Performing a manipulation of the argument section results in file inclusion. This vulnerability is known as CVE-2006-5318. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

vuldb.com

CVE-2006-5319 | Toxi Foafgen 0.3 redir.php foaf path traversal (EDB-2506 / XFDB-29443)

Vuldb Updates

1 month 3 weeks ago

A vulnerability, which was classified as problematic, was found in Toxi Foafgen 0.3. The impacted element is an unknown function of the file redir.php. Executing a manipulation of the argument foaf can lead to path traversal. This vulnerability is handled as CVE-2006-5319. The attack can be executed remotely. Additionally, an exploit exists.

vuldb.com

CVE-2006-5321 | Tincan PHPList up to 2.10.2 cross site scripting (BID-20483)

Vuldb Updates

1 month 3 weeks ago

A vulnerability was found in Tincan PHPList up to 2.10.2 and classified as problematic. This impacts an unknown function. The manipulation results in basic cross site scripting. This vulnerability was named CVE-2006-5321. The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.

vuldb.com

CVE-2006-5322 | Tincan PHPList up to 2.10.2 sql injection (XFDB-29637)

Vuldb Updates

1 month 3 weeks ago

A vulnerability was found in Tincan PHPList up to 2.10.2. It has been classified as critical. Affected is an unknown function. This manipulation causes sql injection. The identification of this vulnerability is CVE-2006-5322. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.

vuldb.com

聚焦内修战备和外慑对手：美国网络司令部司令披露联合作战视角下网络部队发展态势

互联网安全内参

1 month 3 weeks ago

美国网络司令部司令针对美军网络空间态势和能力作证

50万英国人健康数据在国内网站挂牌出售：因科研数据管理不当

互联网安全内参

1 month 3 weeks ago

3家研究机构被认定泄漏源撤销合作

Payoutsking

Dark Feed IO

1 month 3 weeks ago

You must login to view this content

cohenido

Хакеры из Китая придумали, как сделать блокировки бесполезными. Спойлер: помог ваш роутер

Securitylab.ru

1 month 3 weeks ago

Британский центр кибербезопасности опубликовал рекомендации по защите от масштабных ботнет-атак.

Bitwarden CLI受陷，被指与Checkmarx 供应链攻击有关

代码卫士

1 month 3 weeks ago

Checkmarx 入侵事件与本攻击之间存在重叠的入侵指标。

苹果紧急修复可导致 FBI 恢复已删除 Signal 消息的漏洞

代码卫士

1 month 3 weeks ago

速修复

「纽创信安」亮相数字中国建设峰会｜以全同态密文计算，守护数据 “可用不可见”

纽创信安

1 month 3 weeks ago

French Police Arrest HexDex Hacker Over Mass Data Theft and Leaks

Hack Read

1 month 3 weeks ago

French police arrest HexDex hacker, a 20-year-old suspect accused of mass data theft and leaks targeting government, sports groups, and firms.

Deeba Ahmed

Compromised everyday devices power Chinese cyber espionage operations

Help Net Security

1 month 3 weeks ago

China-linked threat actors have shifted from individually procured infrastructure to large-scale covert networks, botnets built from compromised routers and other edge devices, the National Cyber Security Centre (NCSC) warns. To help organizations address this threat, the NCSC, together with the Cyber League and partner agencies, has issued an advisory. The advisory includes guidance for organizations of all sizes, urging them to map and baseline traffic from edge devices, particularly VPN and remote access connections, and … More →

The post Compromised everyday devices power Chinese cyber espionage operations appeared first on Help Net Security.

Sinisa Markovic