Aggregator

Malwarebytes' Black Friday 2024 deals are now live, offering a 50% discount for one and two-year subscriptions to personal, family, and business subscriptions to its standalone anti-malware software, VPN, and Personal Data Remover services. [...]

A Threat Actor Claims to be Selling a 0-day Exploit for Android

Анализ проб астероидов и комет вызывает новые вопросы об эволюции.

A vulnerability, which was classified as problematic, was found in PHPGurukul Vehicle Parking Management System 1.13. Affected is an unknown function of the file /users/profile.php. The manipulation of the argument profile name leads to cross site scripting. This vulnerability is traded as CVE-2024-53365. It is possible to launch the attack remotely. There is no exploit available.

С новой технологией от MIT наводнения никогда не застанут нас врасплох.

Dark Matter Darknet Market Responds to an Ongoing DDoS Attack

A vulnerability, which was classified as problematic, has been found in code-projects Crud Operation System 1.0. This issue affects some unknown processing of the file /add.php. The manipulation of the argument saddress leads to cross site scripting. The identification of this vulnerability is CVE-2024-11820. The attack may be initiated remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.

Learn how to stay professionally detached from the vulnerabilities you discover and disclose as part of your security research.

The post Why you should stay “professionally detached” from the vulns you find appeared first on Dana Epp's Blog.

Learn how to stay professionally detached from the vulnerabilities you discover and disclose as part of your security research.

The post Why you should stay “professionally detached” from the vulns you find appeared first on Dana Epp's Blog.

The post Why you should stay “professionally detached” from the vulns you find appeared first on Security Boulevard.

Submit #451525 / VDB-286193

A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgot_password_process.php. The manipulation of the argument username leads to sql injection. This vulnerability was named CVE-2024-11819. The attack can be initiated remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System 1.0. This affects an unknown part of the file /signup.php. The manipulation of the argument email leads to sql injection. This vulnerability is uniquely identified as CVE-2024-11818. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/index.php. The manipulation of the argument username leads to sql injection. This vulnerability is handled as CVE-2024-11817. The attack may be launched remotely. Furthermore, there is an exploit available.

Submit #451433 / VDB-286192