Aggregator

CVE-2007-1397 | FiSH stack-based overflow (EDB-17181 / XFDB-32892)

1 year 3 months ago

A vulnerability classified as very critical has been found in FiSH. Affected is an unknown function. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2007-1397. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

vuldb.com

Multi-OLE, (Sun, Jan 12th)

不安全

1 year 3 months ago

VBA macros and embedded files/objects are stored as OLE files inside OOXML files.You can have .do

代理切换扩展Proxy SwitchyOmega (V3)也遭到黑客攻击已发布新版移除恶意代码

不安全

1 year 3 months ago

#安全资讯代理切换工具 Proxy SwitchyOmega (V3) 也遭到黑客攻击，不过开发者已经发布新版本移除恶意代码。该扩展在 24 年 12 月 30 日被检测到恶意代码，

CVE-1999-0997 | University of Washington wu-ftpd 2.4.2/2.5.0/2.6.0 FTP Conversion Filename privileges management (DSA-377 / EDB-20563)

Vuldb Updates

1 year 3 months ago

A vulnerability was found in University of Washington wu-ftpd 2.4.2/2.5.0/2.6.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component FTP Conversion. The manipulation as part of Filename leads to improper privilege management. This vulnerability is known as CVE-1999-0997. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

vuldb.com

CVE-2012-4278 | Rwcinc Free Realty 3.1-0.6 notes cross site scripting (EDB-18874 / BID-53491)

Vuldb Updates

1 year 3 months ago

A vulnerability was found in Rwcinc Free Realty 3.1-0.6 and classified as problematic. This issue affects some unknown processing. The manipulation of the argument notes leads to cross site scripting. The identification of this vulnerability is CVE-2012-4278. The attack may be initiated remotely. Furthermore, there is an exploit available.

vuldb.com

CVE-2013-3574 | HP Insight Diagnostics 9.4.0.4710 recon saveCompareConfig.php devicePath input validation (VU#324668 / EDB-38562)

Vuldb Updates

1 year 3 months ago

A vulnerability, which was classified as critical, was found in HP Insight Diagnostics 9.4.0.4710. Affected is an unknown function of the file saveCompareConfig.php of the component recon. The manipulation of the argument devicePath leads to improper input validation. This vulnerability is traded as CVE-2013-3574. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to apply restrictive firewalling.

vuldb.com

CVE-2003-1244 | phpBB 2.0.0/2.0.1/2.0.2 page_header.php forum_id sql injection (EDB-22267 / BID-6888)

Vuldb Updates

1 year 3 months ago

A vulnerability was found in phpBB 2.0.0/2.0.1/2.0.2. It has been rated as critical. Affected by this issue is some unknown functionality of the file page_header.php. The manipulation of the argument forum_id leads to sql injection. This vulnerability is handled as CVE-2003-1244. The attack may be launched remotely. Furthermore, there is an exploit available.

vuldb.com

Great write up, comments and reasoning

不安全

1 year 3 months ago

CVE-2006-1960 | Cisco Wireless LAN Solution Engine up to 2.12 User Interface archiveapplydisplay.jsp displayMsg cross site scripting (EDB-27684 / XFDB-25883)

Vuldb Updates

1 year 3 months ago

A vulnerability has been found in Cisco Wireless LAN Solution Engine up to 2.12 and classified as problematic. This vulnerability affects unknown code of the file archiveapplydisplay.jsp of the component User Interface. The manipulation of the argument displayMsg leads to basic cross site scripting. This vulnerability was named CVE-2006-1960. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

vuldb.com

PCI DSS Requirements With v4.0.1 Updates For 2024

Security Boulevard

1 year 3 months ago

PCI DSS refers to the Payment Card Industry Data Security Standard created by the PCI Security Standards Council (PCI SSC), an independent entity founded by major payment card brands, including Visa, JCB International, MasterCard, American Express, and Discover. PCI DSS is designed to protect cardholder data and ensure security of payment infrastructure. PCI DSS 4.0.1 […]

The post PCI DSS Requirements With v4.0.1 Updates For 2024 appeared first on Security Boulevard.

Harman Singh

PCI DSS Requirements With v4.0.1 Updates For 2024

不安全

1 year 3 months ago

PCI DSS refers to the Payment Card Industry Data Security Standard created by the PCI Security Stan

CVE-2019-8622 | Apple Safari up to 12.1.0 WebKit memory corruption (HT210123 / EDB-46888)

Vuldb Updates

1 year 3 months ago

A vulnerability classified as critical has been found in Apple Safari up to 12.1.0. This affects an unknown part of the component WebKit. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2019-8622. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

vuldb.com

学术前沿 | 国防科技大学李爱平教授团队：物联网威胁情报知识图谱综述

不安全

1 year 3 months ago

引用李昌建, 于晗, 陈恺, 等. 物联网威胁情报知识图谱综述[J]. 网络空间安全科学学报, 2024, 2(2): 18-35 https://doi.org/10.20172/j.issn.20

学术前沿 | 国防科技大学李爱平教授团队：物联网威胁情报知识图谱综述

网信军民融合

1 year 3 months ago

Re @maxmordhorst Weil es das letzte Mal so gut funktioniert hat? Hat die FDP nicht diese Meldestelle in Betrieb genommen?

不安全

1 year 3 months ago

What is PCI DSS 4.0: Is This Still Applicable For 2024?

Security Boulevard

1 year 3 months ago

In a time when cyber threats continuously evolve, a security standard or framework is essential for protecting digital assets. The Payment Card Industry Data Security Standard (PCI DSS), developed by the PCI Security Standards Council, empowers organisations to safeguard cardholder data globally. PCI DSS offers technical guidance and practical steps to effectively protect cardholder data […]

The post What is PCI DSS 4.0: Is This Still Applicable For 2024? appeared first on Security Boulevard.

Harman Singh