Aggregator

CVE-2017-15730 | phpMyFAQ up to 2.9.8 Rating admin/stat.ratings.php cross-site request forgery (EDB-43064 / ID 801936)

Vuldb Updates
3 months 4 weeks ago
A vulnerability identified as problematic has been detected in phpMyFAQ up to 2.9.8. Affected is an unknown function of the file admin/stat.ratings.php of the component Rating. Performing manipulation results in cross-site request forgery. This vulnerability is reported as CVE-2017-15730. The attack is possible to be carried out remotely. Moreover, an exploit is present. You should upgrade the affected component.
vuldb.com

CVE-2017-1000499 | phpMyAdmin up to 4.7.6.0/4.7.6 cross-site request forgery (EDB-45284 / Nessus ID 106997)

Vuldb Updates
3 months 4 weeks ago
A vulnerability classified as problematic has been found in phpMyAdmin up to 4.7.6.0/4.7.6. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2017-1000499. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2017-6089 | phpCollab up to 2.5.1 topics/deletetopics.php ID sql injection (EDB-42935)

Vuldb Updates
3 months 4 weeks ago
A vulnerability described as critical has been identified in phpCollab up to 2.5.1. The impacted element is an unknown function of the file topics/deletetopics.php. Such manipulation of the argument ID as part of Parameter leads to sql injection. This vulnerability is listed as CVE-2017-6089. The attack may be performed from remote. In addition, an exploit is available.
vuldb.com

CVE-2017-9841 | Oracle Communications Diameter Signaling Router up to 8.5.0.0 PHP code injection (EDB-50702 / ID 277023)

Vuldb Updates
3 months 4 weeks ago
A vulnerability, which was classified as very critical, has been found in Oracle Communications Diameter Signaling Router up to 8.5.0.0. The impacted element is an unknown function of the component PHP. This manipulation causes code injection. This vulnerability is registered as CVE-2017-9841. Remote exploitation of the attack is possible. Furthermore, an exploit is available. It is advisable to upgrade the affected component.
vuldb.com

Clop

Dark Feed IO
3 months 4 weeks ago

You must login to view this content

cohenido

Clop

Dark Feed IO
3 months 4 weeks ago

You must login to view this content

cohenido

Clop

Dark Feed IO
3 months 4 weeks ago

You must login to view this content

cohenido

Authorities Dismantle Cybercrime-as-a-Service Platform, Seize 40,000 Active SIM Cards

Cyber Security News
3 months 4 weeks ago

An international law enforcement operation has dismantled a large-scale cybercrime-as-a-service network responsible for fueling thousands of online fraud cases across Europe. The operation, known as SIMCARTEL, took place on 10 October 2025 in Latvia and resulted in five arrests, the seizure of key infrastructure, and the disruption of a sophisticated online criminal marketplace. During coordinated […]

The post Authorities Dismantle Cybercrime-as-a-Service Platform, Seize 40,000 Active SIM Cards appeared first on Cyber Security News.

Guru Baran

Critical Zimbra SSRF Vulnerability Let Attackers Access Sensitive Data

Cyber Security News
3 months 4 weeks ago

A newly disclosed Server-Side Request Forgery (SSRF) flaw in Zimbra Collaboration Suite has raised major security concerns, prompting administrators to patch systems immediately. The issue, identified in the chat proxy configuration component, could allow attackers to gain unauthorized access to internal resources and sensitive user data. According to Zimbra’s latest advisory, this critical SSRF vulnerability […]

The post Critical Zimbra SSRF Vulnerability Let Attackers Access Sensitive Data appeared first on Cyber Security News.

Guru Baran

Radar

Dark Feed IO
3 months 4 weeks ago

You must login to view this content

cohenido

CVE-2024-58238 | Linux Kernel up to 6.6.48 Bluetooth btnxpuart_queue_skb iteration (EUVD-2024-54861 / WID-SEC-2025-1754)

Vuldb Updates
3 months 4 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.48. It has been classified as problematic. This issue affects the function btnxpuart_queue_skb of the component Bluetooth. This manipulation causes excessive iteration. This vulnerability is registered as CVE-2024-58238. The attack requires access to the local network. No exploit is available. Upgrading the affected component is recommended.
vuldb.com

CVE-2025-38553 | Linux Kernel up to 6.1.147/6.6.101/6.12.41/6.15.9/6.16.0 netem_enqueue recursion (Nessus ID 260138 / WID-SEC-2025-1862)

Vuldb Updates
3 months 4 weeks ago
A vulnerability was found in Linux Kernel up to 6.1.147/6.6.101/6.12.41/6.15.9/6.16.0. It has been rated as problematic. Impacted is the function netem_enqueue. Performing manipulation results in uncontrolled recursion. This vulnerability was named CVE-2025-38553. The attack needs to be approached within the local network. There is no available exploit. Upgrading the affected component is advised.
vuldb.com

Managed ad