Aggregator

Ancient8 Secures Optimism Grant To Empower Builders And Transform Onchain Gaming

反面典型

Debian Security Advisory 5822-1

Debian Security Advisory 5821-1

Debian Security Advisory 5820-1

Simple Chat System 1.0 Cross Site Scripting

A vulnerability, which was classified as problematic, was found in Freeware Advanced Audio Coder 1.28. Affected is the function wav_open_read of the file frontend/input.c of the component Frontend. The manipulation as part of WAV File leads to resource consumption. This vulnerability is traded as CVE-2017-9129. Local access is required to approach this attack. Furthermore, there is an exploit available.

A vulnerability was found in Check Point SecureClient NG 4.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to improper access controls. This vulnerability was named CVE-2005-4093. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Oracle Communications Session Report Manager 8.1.1/8.2.0/8.2.1. It has been rated as critical. This issue affects some unknown processing of the component User Interface. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2020-11022. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in IBM WebSphere. This issue affects some unknown processing of the component ikeyman Tool. The manipulation leads to missing encryption of sensitive data. The identification of this vulnerability is CVE-1999-0944. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.11.9. It has been declared as problematic. This vulnerability affects the function free_pages_prepare of the file include/linux/page_owner.h. The manipulation leads to improper update of reference count. This vulnerability was named CVE-2024-53105. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

スマートフォンアプリ「すかいらーくアプリ」には2つのアクセス制限不備の脆弱性が存在します。

勒索攻击不是新技术，是各类攻击技术的组合。所以这会导致：勒索攻击防护是体系化对抗和防御，导致防御面非常大，导致存在较多失效点，特别是人员力量薄弱的分支机构和子公司、海外机构，其真实的防护能力难以掌握，导致攻击者从这些薄弱处攻击成功。

Android BugBazaar: Your mobile appsec playground to Explore, Exploit, Excel BugBazaar is a comprehensive mobile application intentionally designed to be vulnerable, featuring over 30 vulnerabilities. Developed to emulate real-world scenarios, it includes more than...

The post BugBazaar: Mobile penetration testing on the Android platform appeared first on Penetration Testing Tools.

Novel phishing campaign uses corrupted Word documents to evade security

GDB dashboard Modular visual interface for GDB in Python. This comes as a standalone single-file .gdbinit which, among the other things, enables a configurable dashboard showing the most relevant information during the program execution. Its main...

The post gdb dashboard: Modular visual interface for GDB in Python appeared first on Penetration Testing Tools.

sechub It enables the operation and integration of various security tools with one central API in a development environment. SecHub server orchestrates different security tools by one API layer. Users call SecHub Server but...

The post sechub: one central and easy way to use different security tools with one API/Client appeared first on Penetration Testing Tools.