Aggregator

CVE-2023-49269 | Kashipara Group Hotel Management 1.0 reservation.php adults cross site scripting

Vuldb Updates
9 months ago
A vulnerability classified as problematic was found in Kashipara Group Hotel Management 1.0. Affected by this vulnerability is an unknown functionality of the file reservation.php. The manipulation of the argument adults leads to cross site scripting. This vulnerability is known as CVE-2023-49269. The attack can be launched remotely. There is no exploit available.
vuldb.com

CVE-2023-49270 | Kashipara Group Hotel Management 1.0 reservation.php check_in_date cross site scripting

Vuldb Updates
9 months ago
A vulnerability, which was classified as problematic, has been found in Kashipara Group Hotel Management 1.0. This issue affects some unknown processing of the file reservation.php. The manipulation of the argument check_in_date leads to cross site scripting. The identification of this vulnerability is CVE-2023-49270. The attack may be initiated remotely. There is no exploit available.
vuldb.com

CVE-2023-49272 | Kashipara Group Hotel Management 1.0 reservation.php children cross site scripting

Vuldb Updates
9 months ago
A vulnerability, which was classified as problematic, was found in Kashipara Group Hotel Management 1.0. Affected is an unknown function of the file reservation.php. The manipulation of the argument children leads to cross site scripting. This vulnerability is traded as CVE-2023-49272. It is possible to launch the attack remotely. There is no exploit available.
vuldb.com

CVE-2023-49271 | Kashipara Group Hotel Management 1.0 reservation.php check_out_date cross site scripting

Vuldb Updates
9 months ago
A vulnerability was found in Kashipara Group Hotel Management 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file reservation.php. The manipulation of the argument check_out_date leads to cross site scripting. This vulnerability is handled as CVE-2023-49271. The attack may be launched remotely. There is no exploit available.
vuldb.com

Investigating Cobalt Strike Beacons Using Shodan: A Researcher’s Guide

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months ago

Security researcher has revealed a robust method for gathering threat intelligence on Cobalt Strike beacons using Shodan and PowerShell, filling the gap left by the popular @cobaltstrikebot Twitter account that went offline in June 2023. The technique allows security professionals to independently collect valuable configuration data from active Cobalt Strike servers, specifically focusing on beacon […]

The post Investigating Cobalt Strike Beacons Using Shodan: A Researcher’s Guide appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

Volkswagen Car Hack Exposes Owner’s Personal Data and Service Records

GBHackers on Security | #1 Globally Trusted Cyber Security News Platform
9 months ago

Tech-savvy Volkswagen owner has uncovered critical security flaws in the My Volkswagen app that potentially exposed sensitive personal data and vehicle information of thousands of customers. The vulnerabilities, which have since been patched, allowed anyone with access to a vehicle’s VIN number to retrieve comprehensive owner data, service records, and potentially control connected features without […]

The post Volkswagen Car Hack Exposes Owner’s Personal Data and Service Records appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Mayura Kathir

Hacker Charged for Hijacking SEC Account to Promote Fake Bitcoin News

Cyber Security News
9 months ago

Eric Council Jr., a 26-year-old man from Huntsville, Alabama, was sentenced on May 16, 2025, to 14 months in federal prison followed by three years of supervised release for his role in the high-profile hacking of the U.S. Securities and Exchange Commission’s (SEC) official social media account on X (formerly Twitter).  The cyberattack, which occurred […]

The post Hacker Charged for Hijacking SEC Account to Promote Fake Bitcoin News appeared first on Cyber Security News.

Guru Baran

CVE-2024-23922 | Sony XAV-AX5500 Firmware Update data authenticity (EDB-52143)

Vuldb Updates
9 months ago
A vulnerability was found in Sony XAV-AX5500. It has been classified as critical. This affects an unknown part of the component Firmware Update Handler. The manipulation leads to insufficient verification of data authenticity. This vulnerability is uniquely identified as CVE-2024-23922. It is possible to launch the attack on the physical device. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.
vuldb.com

Developing with Docker and Sonatype: Building secure software at scale

Security Boulevard
9 months ago

Docker remains a cornerstone of modern development environments, helping teams containerize applications, speed up delivery pipelines, and standardize across systems. But as container usage grows, so do concerns about software supply chain security, dependency management, and image provenance.

The post Developing with Docker and Sonatype: Building secure software at scale appeared first on Security Boulevard.

Aaron Linskens

Managed ad