Aggregator
CVE-2017-2398 | Apple macOS up to 10.12.3 Kernel memory corruption (HT207615 / Nessus ID 99134)
1 year 8 months ago
A vulnerability, which was classified as critical, was found in Apple macOS up to 10.12.3. This affects an unknown part of the component Kernel. The manipulation leads to memory corruption.
This vulnerability is uniquely identified as CVE-2017-2398. Attacking locally is a requirement. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2008-3185 | Vclcomponents Relative Real Estate Systems up to 3.0 index.php listing_id sql injection (EDB-5924 / XFDB-43316)
1 year 8 months ago
A vulnerability was found in Vclcomponents Relative Real Estate Systems up to 3.0 and classified as critical. Affected by this issue is some unknown functionality of the file index.php. The manipulation of the argument listing_id leads to sql injection.
This vulnerability is handled as CVE-2008-3185. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2877 | cmsWorks 2.2 mod_root lib.module.php code injection (EDB-5921 / XFDB-43310)
1 year 8 months ago
A vulnerability was found in cmsWorks 2.2 and classified as critical. This issue affects some unknown processing in the library admin/include/lib.module.php of the component mod_root. The manipulation of the argument mod_root leads to code injection.
The identification of this vulnerability is CVE-2008-2877. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2881 | Relative Real Estate Systems up to 3.0 MySQL Database information disclosure (EDB-5924)
1 year 8 months ago
A vulnerability classified as problematic has been found in Relative Real Estate Systems up to 3.0. This affects an unknown part of the component MySQL Database. The manipulation leads to information disclosure.
This vulnerability is uniquely identified as CVE-2008-2881. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2978 | Ourvideo CMS 9.5 prefix path traversal (EDB-5920 / XFDB-43312)
1 year 8 months ago
A vulnerability was found in Ourvideo CMS 9.5. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument prefix leads to path traversal.
This vulnerability is known as CVE-2008-2978. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2979 | Ourvideo CMS 9.5 cross site scripting (EDB-5920 / XFDB-43313)
1 year 8 months ago
A vulnerability was found in Ourvideo CMS 9.5. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2008-2979. The attack may be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2008-2977 | Ourvideo CMS 9.5 edit_top_feature.php include_connection code injection (EDB-5920 / XFDB-43311)
1 year 8 months ago
A vulnerability was found in Ourvideo CMS 9.5. It has been classified as critical. Affected is an unknown function of the file edit_top_feature.php. The manipulation of the argument include_connection leads to code injection.
This vulnerability is traded as CVE-2008-2977. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
How to Achieve a Secure and Resilient IT Infrastructure in 6 Steps
1 year 8 months ago
Securing IT infrastructure is a continual journey for every security team. A resilient infrastructure enables organizations to not only defend against modern cyber threats but also to quickly recover from attacks or system failures. Building and maintaining such an infrastructure is an iterative and predictable process that relies on solid foundations in asset management, change management, integrity baselining, system hardening, and effective change detection and rollback capabilities. Here's a step-by-step guide to help you chart a secure and resilient IT infrastructure strategy.
The post How to Achieve a Secure and Resilient IT Infrastructure in 6 Steps appeared first on Security Boulevard.
Mark Allers
«Удалёнка» с подвохом: зачем рекрутеры требуют деньги вперёд
1 year 8 months ago
Обещания высоких заработков могут обернуться серьёзными потерями.
《网络数据条例》发布,以五大修改、四项新规健全网络数据管理机制和制度体系
1 year 8 months ago
阅读: 1一、主要内容概览2024年9月30日国务院发布,2025年1月1日起施行。《条例》共9章64条,主要规定了五方面内容。一是提出
Anatomía del formato PE (Portable Executable)
1 year 8 months ago
En los sistemas Windows podemos encontrar infinidad de extensiones, aunque principalmente destaquen .exe, .dll, .sys, entre otras. Todas estas extensiones...
Juan Antonio González Mena
CVE-2024-7962 | gaizhenbiao ChuanhuChatGPT up to 20240628 path traversal
1 year 8 months ago
A vulnerability was found in gaizhenbiao ChuanhuChatGPT up to 20240628. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to path traversal: '\..\filename'.
The identification of this vulnerability is CVE-2024-7962. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-8143 | gaizhenbiao ChuanhuChatGPT up to 20240628 Private Chat data access operations outside of expected data manager component
1 year 8 months ago
A vulnerability was found in gaizhenbiao ChuanhuChatGPT up to 20240628. It has been declared as problematic. This vulnerability affects unknown code of the component Private Chat Handler. The manipulation leads to data access operations outside of expected data manager component.
This vulnerability was named CVE-2024-8143. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-51075 | PHPGurukul Online DJ Booking Management System 1.0 user-search.php searchdata cross site scripting
1 year 8 months ago
A vulnerability was found in PHPGurukul Online DJ Booking Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /odms/admin/user-search.php. The manipulation of the argument searchdata leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-51075. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-49639 | Edward Stoever Monitor.chat Plugin up to 1.1.1 on WordPress cross site scripting
1 year 8 months ago
A vulnerability was found in Edward Stoever Monitor.chat Plugin up to 1.1.1 on WordPress and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is handled as CVE-2024-49639. The attack may be launched remotely. There is no exploit available.
vuldb.com
CVE-2024-49635 | Manzurul Haque Banner Slider Plugin up to 2.1 on WordPress cross site scripting
1 year 8 months ago
A vulnerability has been found in Manzurul Haque Banner Slider Plugin up to 2.1 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is known as CVE-2024-49635. The attack can be launched remotely. There is no exploit available.
vuldb.com
DarkRaaS is Allegedly Selling Network Access to an Unidentified IT Company in Saudi Arabia
1 year 8 months ago
DarkRaaS is Allegedly Selling Network Access to an Unidentified IT Company in Saudi Arabia
Dark Web Informer
CVE-2024-49634 | Rimon Habib BP Member Type Manager Plugin up to 1.01 on WordPress cross site scripting
1 year 8 months ago
A vulnerability, which was classified as problematic, was found in Rimon Habib BP Member Type Manager Plugin up to 1.01 on WordPress. Affected is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2024-49634. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
CVE-2024-49632 | Coral Web Design CWD 3D Image Gallery Plugin up to 1.0 on WordPress cross site scripting
1 year 8 months ago
A vulnerability classified as problematic was found in Coral Web Design CWD 3D Image Gallery Plugin up to 1.0 on WordPress. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-49632. The attack can be initiated remotely. There is no exploit available.
vuldb.com