Weekly Update 447
I'm home! Well, for a day, then it's off to the other side of the country (which I just flew over last night on the way back from Dublin 🤦♂️) for an event at the Microsoft Accelerator in Perth on Monday. Such is
Aggregator
Lynx
11 months ago
cohenido
Active Directory Attack Kill Chain Checklist & Tools List- 2025
11 months ago
The “Active Directory Kill Chain Attack & Defense” concept is a structured approach to understanding the sequence of events or stages involved in an Active Directory (AD) attack and the corresponding defensive measures to counteract or prevent such attacks. Microsoft developed the service Active Directory for Windows domain networks for user and resource management in […]
The post Active Directory Attack Kill Chain Checklist & Tools List- 2025 appeared first on Cyber Security News.
Kaaviya
8000 IP-адресов и миллионы жертв: Smishing Triad взяла мир на SMS-крючок
11 months ago
Как китайские хакеры обчищают карманы граждан из 120 стран?
CVE-2021-45467 | CentOS Web Panel up to 0.9.8.864 API Key /user/loader.php?api=1 scripts access control
11 months ago
A vulnerability was found in CentOS Web Panel. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/loader.php?api=1 of the component API Key Handler. The manipulation of the argument scripts leads to improper access controls.
This vulnerability is handled as CVE-2021-45467. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-24119 | General Electric iNET/iNET II up to 8.2.x Device Configuration Shell backdoor (icsa-22-090-06)
11 months ago
A vulnerability, which was classified as very critical, has been found in General Electric iNET and iNET II up to 8.2.x. This issue affects some unknown processing of the component Device Configuration Shell. The manipulation leads to backdoor.
The identification of this vulnerability is CVE-2022-24119. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-24117 | General Electric MDS iNET/iNET II/SD/TD220/TD220MAX Firmware code download (icsa-22-090-06)
11 months ago
A vulnerability has been found in General Electric MDS iNET, iNET II, SD, TD220 and TD220MAX and classified as critical. Affected by this vulnerability is an unknown functionality of the component Firmware Handler. The manipulation leads to download of code without integrity check.
This vulnerability is known as CVE-2022-24117. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-24118 | General Electric iNET/iNET II/SD/TD220X/TD220MAX resource consumption (icsa-22-090-06)
11 months ago
A vulnerability was found in General Electric iNET, iNET II, SD, TD220X and TD220MAX and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to resource consumption.
This vulnerability is handled as CVE-2022-24118. Access to the local network is required for this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-24116 | General Electric iNET/iNET II up to 8.2.x inadequate encryption (icsa-22-090-06)
11 months ago
A vulnerability classified as problematic has been found in General Electric iNET and iNET II up to 8.2.x. Affected is an unknown function. The manipulation leads to inadequate encryption strength.
This vulnerability is traded as CVE-2022-24116. The attack can only be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-24120 | General Electric iNET/iNET II up to 8.2.x credentials storage (icsa-22-090-06)
11 months ago
A vulnerability classified as problematic was found in General Electric iNET and iNET II up to 8.2.x. Affected by this vulnerability is an unknown functionality. The manipulation leads to unprotected storage of credentials.
This vulnerability is known as CVE-2022-24120. It is possible to launch the attack on the physical device. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-4150 | Contest Gallery Plugin/Contest Gallery Pro Plugin 19.1.5 on WordPress POST Parameter order-custom-fields-with-and-without-search.php option_id sql injection
11 months ago
A vulnerability was found in Contest Gallery Plugin and Contest Gallery Pro Plugin 19.1.5 on WordPress. It has been classified as critical. Affected is an unknown function of the file order-custom-fields-with-and-without-search.php of the component POST Parameter Handler. The manipulation of the argument option_id leads to sql injection.
This vulnerability is traded as CVE-2022-4150. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-4153 | Contest Gallery Plugin/Contest Gallery Pro Plugin 19.1.5 on WordPress POST Parameter get-data-create-upload-v10.php upload[] sql injection
11 months ago
A vulnerability classified as critical has been found in Contest Gallery Plugin and Contest Gallery Pro Plugin 19.1.5 on WordPress. This affects an unknown part of the file get-data-create-upload-v10.php of the component POST Parameter Handler. The manipulation of the argument upload[] leads to sql injection.
This vulnerability is uniquely identified as CVE-2022-4153. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-4155 | Contest Gallery Plugin/Contest Gallery Pro Plugin 19.1.5 on WordPress management-show-user.php wp_user_id sql injection
11 months ago
A vulnerability, which was classified as critical, has been found in Contest Gallery Plugin and Contest Gallery Pro Plugin 19.1.5 on WordPress. This issue affects some unknown processing of the file management-show-user.php. The manipulation of the argument wp_user_id leads to sql injection.
The identification of this vulnerability is CVE-2022-4155. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-4157 | Contest Gallery Plugin/Contest Gallery Pro Plugin 19.1.5 on WordPress POST Parameter export-votes-all.php cg_option_id sql injection
11 months ago
A vulnerability has been found in Contest Gallery Plugin and Contest Gallery Pro Plugin 19.1.5 on WordPress and classified as critical. Affected by this vulnerability is an unknown functionality of the file export-votes-all.php of the component POST Parameter Handler. The manipulation of the argument cg_option_id leads to sql injection.
This vulnerability is known as CVE-2022-4157. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-4158 | Contest Gallery Plugin/Contest Gallery Pro Plugin 19.1.5 on WordPress POST Parameter users-registry-check-registering-and-login.php cg_Fields sql injection
11 months ago
A vulnerability was found in Contest Gallery Plugin and Contest Gallery Pro Plugin 19.1.5 on WordPress and classified as critical. Affected by this issue is some unknown functionality of the file users-registry-check-registering-and-login.php of the component POST Parameter Handler. The manipulation of the argument cg_Fields leads to sql injection.
This vulnerability is handled as CVE-2022-4158. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-3835 | Kwayy HTML Sitemap Plugin up to 3.x on WordPress Setting cross site scripting
11 months ago
A vulnerability was found in Kwayy HTML Sitemap Plugin up to 3.x on WordPress. It has been rated as problematic. This issue affects some unknown processing of the component Setting Handler. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2022-3835. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2022-4042 | Paytium Plugin up to 4.3.6 on WordPress Setting cross site scripting
11 months ago
A vulnerability classified as problematic has been found in Paytium Plugin up to 4.3.6 on WordPress. Affected is an unknown function of the component Setting Handler. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2022-4042. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com
Hackers Exploiting Domain Controller to Deploy Ransomware Using RDP
11 months ago
Microsoft has recently uncovered a sharp rise in ransomware attacks exploiting domain controllers (DCs) through Remote Desktop Protocol (RDP), with the average attack costing organizations $9.36 million in 2024. These sophisticated campaigns aim to cripple enterprises by encrypting critical systems by leverage DCs, the pivotal role of RDP, and practical defenses, based on Microsoft’s findings […]
The post Hackers Exploiting Domain Controller to Deploy Ransomware Using RDP appeared first on Cyber Security News.
Balaji N
Ransomware Attack Prevention Checklist – 2025
11 months ago
Businesses face significant hazards from ransomware attacks, which are capable of causing severe damage in a brief period. Over the past few years, numerous well-known companies, including CNA Financial, JBS Foods, and Colonial Pipeline, have fallen victim to such attacks, resulting in disruptions to insurance payments, food supplies, and fuel availability. These incidents have highlighted […]
The post Ransomware Attack Prevention Checklist – 2025 appeared first on Cyber Security News.
Cyber Writes Team
Чем тише пульс, тем громче поток: наука про «дзен» от Тетрис
11 months ago
Новый взгляд на тетрис — через ЭЭГ, частоту дыхания и импеданс кожи.