Aggregator

A suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance (CSA) a zero-day to perform a series of malicious actions. That's according to findings from Fortinet FortiGuard Labs, which said the vulnerabilities were abused to gain unauthenticated access to the CSA, enumerate users configured in the appliance, and attempt to access the

A vulnerability was found in AfterLogic MailBee WebMail Pro 4.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file download_view_attachment.aspx. The manipulation of the argument temp_filename leads to path traversal. This vulnerability is known as CVE-2008-0333. The attack can be launched remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, has been found in MiniWeb HTTP Server 0.8.19. This issue affects the function _mwprocessreadsocket of the file http.c. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2008-0337. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as problematic, was found in MiniWeb HTTP Server 0.8.19. Affected is the function mwgetlocalfilename of the file http.c. The manipulation leads to path traversal. This vulnerability is traded as CVE-2008-0338. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Alilg aliTalk 1.9.1.1. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument username leads to sql injection. The identification of this vulnerability is CVE-2008-0371. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Alilg aliTalk 1.9.1.1. It has been classified as critical. This affects an unknown part. The manipulation of the argument lilil leads to improper authentication. This vulnerability is uniquely identified as CVE-2008-0391. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in aria 0.99-6. It has been classified as problematic. Affected is an unknown function of the component Help. The manipulation of the argument page leads to path traversal. This vulnerability is traded as CVE-2008-0332. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Blog Cms 4.2.1 C. It has been declared as problematic. This vulnerability affects unknown code of the file admin.php. The manipulation leads to cross site scripting. This vulnerability was named CVE-2008-0359. The attack can be initiated remotely. Furthermore, there is an exploit available.

A critical security vulnerability has been discovered in the popular Java framework pac4j. The vulnerability specifically affects versions before 4.0 of the pac4j-core module. This vulnerability, identified as CVE-2023-25581, exposes systems to potential remote code execution (RCE) attacks due to a flaw in the deserialization process. Vulnerability Details – CVE-2023-25581 The issue stems from a […]

The post pac4j Java Framework Vulnerable to RCE Attacks appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

15 лет назад детище Facebook навсегда изменило лицо соцсетей.

Personal data of over 2600 employees has been exposed and insider information about the Switch 2 and future Pokémon games leaked

切面融合智能，构建新一代网安基建。

A vulnerability was found in Cisco Email Security Appliance up to 9.7.2. It has been classified as problematic. This affects an unknown part of the component Messages in Quarantine. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2016-1423. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in enyetech Coca-Cola FM Honduras 2.0.41725 and classified as critical. This issue affects some unknown processing of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. The identification of this vulnerability is CVE-2014-7667. The attack needs to be initiated within the local network. There is no exploit available.

The link between detection and response (DR) practices and cloud security has historically been weak. As global organizations increasingly adopt cloud environments, security strategies have largely focused on "shift-left" practices—securing code, ensuring proper cloud posture, and fixing misconfigurations. However, this approach has led to an over-reliance on a multitude of DR tools spanning

Cybersecurity researchers have found that entry points could be abused across multiple programming ecosystems like PyPI, npm, Ruby Gems, NuGet, Dart Pub, and Rust Crates to stage software supply chain attacks. "Attackers can leverage these entry points to execute malicious code when specific commands are run, posing a widespread risk in the open-source landscape," Checkmarx researchers Yehuda

Perfectl in an impressive piece of malware:

The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said. It can also exploit CVE-2023-33246, a vulnerability with a severity rating of 10 out of 10 that was patched last year in Apache RocketMQ, a messaging and streaming platform that’s found on many Linux machines.

The researchers are calling the malware Perfctl, the name of a malicious component that surreptitiously mines cryptocurrency. The unknown developers of the malware gave the process a name that combines the perf Linux monitoring tool and ctl, an abbreviation commonly used with command line tools. A signature characteristic of Perfctl is its use of process and file names that are identical or similar to those commonly found in Linux environments. The naming convention is one of the many ways the malware attempts to escape notice of infected users...

The post Perfectl Malware appeared first on Security Boulevard.

A vulnerability was found in FaScript FaPersian Petition. It has been rated as critical. This issue affects some unknown processing of the file show.php. The manipulation of the argument id leads to sql injection. The identification of this vulnerability is CVE-2008-0325. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in FaScript FaPersianHack 1.0. Affected is an unknown function. The manipulation of the argument id leads to sql injection. This vulnerability is traded as CVE-2008-0326. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Blog Cms 4.2.1 C. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument field leads to sql injection. The identification of this vulnerability is CVE-2008-0360. The attack may be initiated remotely. Furthermore, there is an exploit available.