Russia targets Harris campaign with wave of fake videos
Russia has fully pivoted its disinformation efforts to focus on Vice President Kamala Harris, relea
Aggregator
CVE-2015-1479 | Zoho ManageEngine ServiceDesk Plus 9.0 Build 9031 site sql injection (ID 130079 / EDB-35890)
10 months ago
A vulnerability has been found in Zoho ManageEngine ServiceDesk Plus 9.0 Build 9031 and classified as critical. This vulnerability affects unknown code. The manipulation of the argument site leads to sql injection.
This vulnerability was named CVE-2015-1479. The attack can be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2013-7247 | Franklinfueling Ts-550 Evo up to 2.0.0.6832 Firmware access control (EDB-31180)
10 months ago
A vulnerability, which was classified as problematic, has been found in Franklinfueling Ts-550 Evo up to 2.0.0.6832. Affected by this issue is some unknown functionality of the component Firmware. The manipulation leads to improper access controls.
This vulnerability is handled as CVE-2013-7247. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Discord launches end-to-end encrypted voice and video chats
10 months ago
Discord, one of the largest group chat apps in the world, announced on Tuesday that audio and video
FortiGate SSLVPN 堆溢出漏洞分析与利用
10 months ago
处理env参数时存在逻辑缺陷,导致堆溢出写,漏洞利用可以导致任意代码执行。
CVE-2007-2901 | Dokeos 1.8.0 ImageManager/editor.php img cross site scripting (EDB-3974 / XFDB-34733)
10 months ago
A vulnerability classified as problematic has been found in Dokeos 1.8.0. Affected is an unknown function in the library main/inc/lib/fckeditor/editor/plugins/imagemanager/editor.php of the file ImageManager/editor.php. The manipulation of the argument img leads to basic cross site scripting.
This vulnerability is traded as CVE-2007-2901. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com
安全动态回顾|《人工智能安全治理框架》发布 网络安全巨头Fortinet证实遭遇数据泄露
10 months ago
往期回顾:
胡金鱼
Broadcom fixes critical RCE bug in VMware vCenter Server
10 months ago
error code: 1106
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
SOAR的未来
10 months ago
SOAR已死?中国SOAR市场未来如何?
CVE-2007-2900 | Scallywag 2005-04-25 template.php path code injection (EDB-3972 / XFDB-34469)
10 months ago
A vulnerability was found in Scallywag 2005-04-25. It has been rated as critical. This issue affects some unknown processing of the file template.php. The manipulation of the argument path leads to code injection.
The identification of this vulnerability is CVE-2007-2900. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Construction firms breached in brute force attacks on accounting software
10 months ago
error code: 1106
漏洞通告 | Ivanti Cloud Service Appliance 命令注入漏洞(CVE-2024-8190)
10 months ago
戳我立即查看
CVE-2016-8341 | Ecava IntegraXor 5.0.413.0 sql injection (ID 370343 / BID-95907)
10 months ago
A vulnerability classified as critical was found in Ecava IntegraXor 5.0.413.0. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.
This vulnerability is known as CVE-2016-8341. The attack can be launched remotely. There is no exploit available.
It is recommended to apply restrictive firewalling.
vuldb.com
CVE-2022-23134 | Zabbix Configuration setup.php access control (ZBX-20384)
10 months ago
A vulnerability was found in Zabbix. It has been classified as critical. This affects an unknown part of the file setup.php of the component Configuration Handler. The manipulation leads to improper access controls.
This vulnerability is uniquely identified as CVE-2022-23134. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.
vuldb.com