Submit #584054: Juzaweb Juzaweb CMS 3.4.2 Broken Access Control on "Menu" Page [Accepted]
Submit #584054 / VDB-310759
Aggregator
Submit #584053: Juzaweb Juzaweb CMS 3.4.2 Broken Access Control on “Theme Editor" Page [Accepted]
2 months 1 week ago
Submit #584053 / VDB-310758
Submit #584052: Juzaweb Juzaweb CMS 3.4.2 Broken Access Control on “Media" Page [Accepted]
2 months 1 week ago
Submit #584052 / VDB-310757
Submit #584051: Juzaweb Juzaweb CMS 3.4.2 Broken Access Control on “General Setting" Page [Accepted]
2 months 1 week ago
Submit #584051 / VDB-310756
Submit #584050: Juzaweb Juzaweb CMS 3.4.2 Broken Access Control on “Email Logs" Page [Accepted]
2 months 1 week ago
Submit #584050 / VDB-310755
Submit #584049: Juzaweb Juzaweb CMS 3.4.2 Broken Access Control on “Plugin” Page [Accepted]
2 months 1 week ago
Submit #584049 / VDB-310754
Submit #584048: Juzaweb Juzaweb CMS 3.4.2 Cross-Site Scripting [Accepted]
2 months 1 week ago
Submit #584048 / VDB-310753
CVE-2019-9851 | LibreOffice up to 6.2.5 LibreLogo Python Command input validation (ID 154168 / EDB-47298)
2 months 1 week ago
A vulnerability classified as critical was found in LibreOffice up to 6.2.5. Affected by this vulnerability is an unknown functionality of the component LibreLogo. The manipulation as part of Python Command leads to improper input validation.
This vulnerability is known as CVE-2019-9851. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2008-2781 | DZOIC Handshakes 3.5 index.php fname sql injection (EDB-31837 / XFDB-42639)
2 months 1 week ago
A vulnerability was found in DZOIC Handshakes 3.5 and classified as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument fname leads to sql injection.
The identification of this vulnerability is CVE-2008-2781. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2012-2099 | Wikidforum 2.10 cross site scripting (EDB-36948 / XFDB-73985)
2 months 1 week ago
A vulnerability was found in Wikidforum 2.10. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2012-2099. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2017-13783 | Apple Safari up to 11.0 WebKit memory corruption (HT208223 / EDB-43172)
2 months 1 week ago
A vulnerability has been found in Apple Safari up to 11.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component WebKit. The manipulation leads to memory corruption.
This vulnerability is known as CVE-2017-13783. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Cybercriminals Breach Cloud Technology Provider in Latest FLocker Attack
2 months 1 week ago
You must login to view this content
cohenido
【情报】美国前导弹攻击潜艇指挥官分析中国登陆运输船
2 months 1 week ago
美国前导弹攻击潜艇指挥官分析中国登陆运输船。
Имя человека, стоявшего за атакой на полмира, раскрыто. Но его руки до сих пор развязаны
2 months 1 week ago
Теперь мы знаем, кто всё это время заправлял бандами TrickBot и Conti. Что дальше?
CVE-2007-4081 | AlstraSoft Affiliate Network Pro merchants/temp.php rowid sql injection (EDB-30369 / BID-25026)
2 months 1 week ago
A vulnerability has been found in AlstraSoft Affiliate Network Pro and classified as critical. Affected by this vulnerability is an unknown functionality of the file merchants/temp.php. The manipulation of the argument rowid leads to sql injection.
This vulnerability is known as CVE-2007-4081. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2017-13802 | Apple iOS up to 11.0.3 WebKit memory corruption (HT208222 / EDB-43173)
2 months 1 week ago
A vulnerability has been found in Apple iOS up to 11.0.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the component WebKit. The manipulation leads to memory corruption.
This vulnerability is known as CVE-2017-13802. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Flocker
2 months 1 week ago
You must login to view this content
cohenido
WorldLeaks
2 months 1 week ago
You must login to view this content
cohenido
CVE-2014-9243 | WebsiteBaker 2.8.3 admintool section_id cross site scripting (ID 129140 / EDB-35277)
2 months 1 week ago
A vulnerability was found in WebsiteBaker 2.8.3. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component admintool. The manipulation of the argument section_id leads to cross site scripting.
This vulnerability is known as CVE-2014-9243. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
Insider Threats in 2025 Detection and Prevention Strategies
2 months 1 week ago
Organizations worldwide are grappling with an unprecedented escalation in insider threats. The latest research reveals that companies now spend an average of $17.4 million annually combating internal security risks a significant increase from $16.2 million in 2023. As remote work blurs traditional security perimeters and artificial intelligence reshapes the threat landscape, cybersecurity experts urgently call […]
The post Insider Threats in 2025 Detection and Prevention Strategies appeared first on Cyber Security News.
CISO Advisory