#0daytoday #PrestaShop < 1.6.1.19 - AES CBC Privilege Escalation Exploit [#0day #Exploit]
Read More
Read More
Microsoft Moves Up As Phishers' Favorite Target for Brand Spoofing
Read More
Read More
Thousands of U.S. Voter Personal Records Leaked by Robocall Firm
Read more
Read more
Microsoft Identity Bounty Program Pays $500 to $100,000 for Bugs
Read More
Read More
#0daytoday #FTP2FTP 1.0 - Arbitrary File Download Vulnerability [webapps #exploits #Vulnerability #0day #Exploit]
Read More
Read More
#0daytoday #LinuxKernel 4.14.8 Sign Extension Local Privilege Escalation Exploit [#0day #Exploit]
Read More
Read More
It was found that the REST API in Infinispan before version 9.0.0 did not properly enforce auth constraints. An attacker could use this vulnerability to read or modify data in the default cache or a known cache name.
Published at: July 16, 2018 at 03:29PM
View on website
Published at: July 16, 2018 at 03:29PM
View on website
The atlassian-http library, as used in various Atlassian products, before version 2.0.2 allows remote attackers to spoof web content in the Mozilla Firefox Browser through uploaded files that have a content-type of application/mathml+xml.
Published at: July 18, 2018 at 04:29PM
View on website
Published at: July 18, 2018 at 04:29PM
View on website
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the import CA and CRL certificates feature.
Published at: July 16, 2018 at 10:29PM
View on website
Published at: July 16, 2018 at 10:29PM
View on website