Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from DailyCVE
Dailycve
firefox: Multiple vulnerabilities | CVE
Details:
USN-4687-1: Firefox vulnerability
08 January 2021
Firefox could be made to crash or run programs as your login if it
opened a malicious website.
Releases
o Ubuntu 20.10
o Ubuntu 20.04 LTS
o Ubuntu 18.04 LTS
o Ubuntu 16.04 LTS
Packages…
Forwarded from DailyCVE
🔵firefox-esr: Multiple vulnerabilities CVE-2020-16044 :
https://dailycve.com/firefox-esr-multiple-vulnerabilities-cve-2020-16044
https://dailycve.com/firefox-esr-multiple-vulnerabilities-cve-2020-16044
Dailycve
firefox-esr: Multiple vulnerabilities CVE-2020-16044 | CVE
Details:
A security issue was found in the Mozilla Firefox web browser, which
could potentially result in the execution of arbitrary code.
Affected Versions:
For Debian 9 stretch, this problem has been fixed in version
78.6.1esr-1~deb9u1.
…
Forwarded from DailyCVE
🔵Security Announcement Regarding File Upload Vulnerabilities in Zhiyuan OA System :
https://dailycve.com/security-announcement-regarding-file-upload-vulnerabilities-zhiyuan-oa-system
https://dailycve.com/security-announcement-regarding-file-upload-vulnerabilities-zhiyuan-oa-system
Dailycve
Security Announcement Regarding File Upload Vulnerabilities in Zhiyuan OA System | CVE
Details:
Zhiyuan OA is a collaboration management program developed by Beijing Zhiyuan Internet Software Co., Ltd. (hereinafter referred to as Zhiyuan Company), which provides medium and large-scale and community organisations with a digital collaborative…
Forwarded from DailyCVE
🔵Security bulletin Remote code execution vulnerability in Apache Struts2:
https://dailycve.com/remote-code-execution-vulnerability-apache-struts2
https://dailycve.com/remote-code-execution-vulnerability-apache-struts2
Dailycve
Remote code execution vulnerability in Apache Struts2 | CVE
Details:
Struts2 is the second-generation Java enterprise-level web application framework based on the Model-View-Controller (MVC) model and has become a popular container software middleware at home and abroad.
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
The Ministry of Commerce of China announced a new law to be extended to international firms and began to enforce it immediately.
#International
#International
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE TESTING
🔵Nissan source code leaked through misconfigured Git server:
https://dailycve.com/nissan-source-code-leaked-through-misconfigured-git-server
https://dailycve.com/nissan-source-code-leaked-through-misconfigured-git-server
Dailycve
Nissan source code leaked through misconfigured Git server | CVE
Details:
Due to a misconfiguration of the company's Git server, the source code of Nissan North America was leaked online, and the server was exposed online because of the default username and password admin/admin. The leaked information included the…
Forwarded from UNDERCODE TESTING
🔵Google patches Android's crucial remote code execution weakness:
https://dailycve.com/google-patches-androids-crucial-remote-code-execution-weakness
https://dailycve.com/google-patches-androids-crucial-remote-code-execution-weakness
Dailycve
Google patches Android's crucial remote code execution weakness | CVE
Details:
Google has released an Android security update that addresses 43 vulnerabilities, including a critical remote code execution vulnerability in an Android system component tracked as CVE-2021-0316. Google has resolved these shortcomings by issuing…
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
Perfect hacking tools for linux :
»Frida(https://github.com/frida/frida/releases)
>>Objection - mobile exploration toolkit by Frida(https://github.com/sensepost/objection)
>>Bfinject(https://github.com/BishopFox/bfinject)
>>iFunbox(http://www.i-funbox.com/)
>>Libimobiledevice - library to communicate with the services of the Apple ios devices(https://www.libimobiledevice.org/)
>>iRET (iOS Reverse Engineering Toolkit)(https://www.veracode.com/sites/default/files/Resources/Tools/iRETTool.zip) - includes oTool, dumpDecrypted, SQLite, Theos, Keychain_dumper, Plutil
>>Myriam iOS(https://github.com/GeoSn0w/Myriam)
>>iWep Pro - wireless suite of useful applications used to turn your iOS device into a wireless network diagnostic tool(https://itunes.apple.com/us/app/iweppro/id578135585?mt=8)
>>Burp Suite(https://portswigger.net/burp/communitydownload)
>>Cycript(https://cydia.saurik.com/api/latest/3)
>>needle - The iOS Security Testing Framework(https://github.com/FSecureLABS/needle)
>>iLEAPP - iOS Logs, Events, And Preferences Parser(https://github.com/abrignoni/iLEAPP)
>>Cutter - Free and Open Source RE Platform powered by radare2(https://cutter.re/)
>>decrypt0r - automatically download and decrypt SecureRom stuff(https://github.com/shinvou/decrypt0r)
references git
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
Perfect hacking tools for linux :
»Frida(https://github.com/frida/frida/releases)
>>Objection - mobile exploration toolkit by Frida(https://github.com/sensepost/objection)
>>Bfinject(https://github.com/BishopFox/bfinject)
>>iFunbox(http://www.i-funbox.com/)
>>Libimobiledevice - library to communicate with the services of the Apple ios devices(https://www.libimobiledevice.org/)
>>iRET (iOS Reverse Engineering Toolkit)(https://www.veracode.com/sites/default/files/Resources/Tools/iRETTool.zip) - includes oTool, dumpDecrypted, SQLite, Theos, Keychain_dumper, Plutil
>>Myriam iOS(https://github.com/GeoSn0w/Myriam)
>>iWep Pro - wireless suite of useful applications used to turn your iOS device into a wireless network diagnostic tool(https://itunes.apple.com/us/app/iweppro/id578135585?mt=8)
>>Burp Suite(https://portswigger.net/burp/communitydownload)
>>Cycript(https://cydia.saurik.com/api/latest/3)
>>needle - The iOS Security Testing Framework(https://github.com/FSecureLABS/needle)
>>iLEAPP - iOS Logs, Events, And Preferences Parser(https://github.com/abrignoni/iLEAPP)
>>Cutter - Free and Open Source RE Platform powered by radare2(https://cutter.re/)
>>decrypt0r - automatically download and decrypt SecureRom stuff(https://github.com/shinvou/decrypt0r)
references git
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁
GitHub
Releases · frida/frida
Clone this repo to build Frida. Contribute to frida/frida development by creating an account on GitHub.
Forwarded from DailyCVE
Forwarded from DailyCVE
Dailycve
OKLite has Multiple vulnerabilities | CVE
Details:
OKLite is a minimalist framework for corporate websites. Displaying corporate website customers is the key focus market, helping typical small enterprises to launch websites easily.
OKLite has a drawback to a logic error, which can be abused…
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
