Aggregator

PsyOps of Phishing: A Wolf in Shepherd’s Clothing

Security Boulevard
10 months 3 weeks ago

I am sure all of us have encountered CAPTCHA while browsing the internet. “Verify you are human”, “I’m not a robot”, “Select all the squares with traffic lights” — it has become a recognized if not begrudging part of our regular interaction with today’s online content. We in part accept this mild inconvenience because we […]

The post PsyOps of Phishing: A Wolf in Shepherd’s Clothing appeared first on Allure Security.

The post PsyOps of Phishing: A Wolf in Shepherd’s Clothing appeared first on Security Boulevard.

Chris

CVE-2022-3537 | Role Based Pricing for WooCommerce Plugin up to 1.6.1 on WordPress unrestricted upload

Vuldb Updates
10 months 3 weeks ago
A vulnerability was found in Role Based Pricing for WooCommerce Plugin up to 1.6.1 on WordPress and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to unrestricted upload. This vulnerability is handled as CVE-2022-3537. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-3494 | Complianz Plugin/Complianz Premium Plugin on WordPress Translation sql injection

Vuldb Updates
10 months 3 weeks ago
A vulnerability classified as critical has been found in Complianz Plugin and Complianz Premium Plugin on WordPress. Affected is an unknown function of the component Translation Handler. The manipulation leads to sql injection. This vulnerability is traded as CVE-2022-3494. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-3536 | Role Based Pricing for WooCommerce Plugin up to 1.6.2 on WordPress Phar deserialization

Vuldb Updates
10 months 3 weeks ago
A vulnerability classified as critical was found in Role Based Pricing for WooCommerce Plugin up to 1.6.2 on WordPress. Affected by this vulnerability is an unknown functionality of the component Phar Handler. The manipulation leads to deserialization. This vulnerability is known as CVE-2022-3536. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-3558 | Import and Export Users and Customers Plugin up to 1.20.4 on WordPress csv injection

Vuldb Updates
10 months 3 weeks ago
A vulnerability was found in Import and Export Users and Customers Plugin up to 1.20.4 on WordPress. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to csv injection. This vulnerability is known as CVE-2022-3558. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2022-41433 | EyesOfNetwork 5.3 Web Interface add_application.php cross site scripting

Vuldb Updates
10 months 3 weeks ago
A vulnerability was found in EyesOfNetwork 5.3. It has been classified as problematic. This affects an unknown part of the file /module/admin_bp/add_application.php of the component Web Interface. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2022-41433. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com

CVE-2020-35473 | Bluetooth Core up to 5.2 Low Energy Advertisement Scan Response information disclosure

Vuldb Updates
10 months 3 weeks ago
A vulnerability classified as problematic was found in Bluetooth Core up to 5.2. Affected by this vulnerability is an unknown functionality of the component Low Energy Advertisement Scan Response Handler. The manipulation leads to information disclosure. This vulnerability is known as CVE-2020-35473. Access to the local network is required for this attack. There is no exploit available.
vuldb.com

Managed ad