‼ CVE-2021-22978 ‼
📖 Read
via "National Vulnerability Database".
On BIG-IP version 16.0.x before 16.0.1, 15.1.x before 15.1.1, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.5, and all 12.1.x and 11.6.x versions, undisclosed endpoints in iControl REST allow for a reflected XSS attack, which could lead to a complete compromise of BIG-IP if the victim user is granted the admin role. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26753 ‼
📖 Read
via "National Vulnerability Database".
NeDi 1.9C allows an authenticated user to inject PHP code in the System Files function on the endpoint /System-Files.php via the txt HTTP POST parameter. This allows an attacker to obtain access to the operating system where NeDi is installed and to all application data.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26751 ‼
📖 Read
via "National Vulnerability Database".
NeDi 1.9C allows an authenticated user to perform a SQL Injection in the Monitoring History function on the endpoint /Monitoring-History.php via the det HTTP GET parameter. This allows an attacker to access all the data in the database and obtain access to the NeDi application.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26752 ‼
📖 Read
via "National Vulnerability Database".
NeDi 1.9C allows an authenticated user to execute operating system commands in the Nodes Traffic function on the endpoint /Nodes-Traffic.php via the md or ag HTTP GET parameter. This allows an attacker to obtain access to the operating system where NeDi is installed and to all application data.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27210 ‼
📖 Read
via "National Vulnerability Database".
TP-Link Archer C5v 1.7_181221 devices allows remote attackers to retrieve cleartext credentials via [USER_CFG#0,0,0,0,0,0#0,0,0,0,0,0]0,0 to the /cgi?1&5 URI.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27209 ‼
📖 Read
via "National Vulnerability Database".
In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a base64 format over cleartext HTTP.📖 Read
via "National Vulnerability Database".
‼ CVE-2019-25019 ‼
📖 Read
via "National Vulnerability Database".
LimeSurvey before 4.0.0-RC4 allows SQL injection via the participant model.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27212 ‼
📖 Read
via "National Vulnerability Database".
In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemon exit) via a short timestamp. This is related to schema_init.c and checkTime.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26929 ‼
📖 Read
via "National Vulnerability Database".
An XSS issue was discovered in Horde Groupware Webmail Edition through 5.2.22 (where the Horde_Text_Filter library before 2.3.7 is used). The attacker can send a plain text e-mail message, with JavaScript encoded as a link or email that is mishandled by preProcess in Text2html.php, because bespoke use of \x00\x00\x00 and \x01\x01\x01 interferes with XSS defenses.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27213 ‼
📖 Read
via "National Vulnerability Database".
config.py in pystemon before 2021-02-13 allows code execution via YAML deserialization because SafeLoader and safe_load are not used.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-36234 ‼
📖 Read
via "National Vulnerability Database".
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view. The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.15.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-36235 ‼
📖 Read
via "National Vulnerability Database".
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to view custom field and custom SLA names via an Information Disclosure vulnerability in the mobile site view. The affected versions are before version 8.13.2, and from version 8.14.0 before 8.14.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-36237 ‼
📖 Read
via "National Vulnerability Database".
Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to view custom field options via an Information Disclosure vulnerability in the /rest/api/2/customFieldOption/ endpoint. The affected versions are before version 8.15.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-36236 ‼
📖 Read
via "National Vulnerability Database".
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the ViewWorkflowSchemes.jspa and ListWorkflows.jspa endpoints. The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.15.0.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-29451 ‼
📖 Read
via "National Vulnerability Database".
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate Jira projects via an Information Disclosure vulnerability in the Jira Projects plugin report page. The affected versions are before version 8.5.11, from version 8.6.0 before 8.13.3, and from version 8.14.0 before 8.14.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-21702 ‼
📖 Read
via "National Vulnerability Database".
In PHP versions 7.3.x below 7.3.27, 7.4.x below 7.4.15 and 8.0.x below 8.0.2, when using SOAP extension to connect to a SOAP server, a malicious SOAP server could return malformed XML data as a response that would cause PHP to access a null pointer and thus cause a crash.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-7071 ‼
📖 Read
via "National Vulnerability Database".
In PHP versions 7.3.x below 7.3.26, 7.4.x below 7.4.14 and 8.0.0, when validating URL with functions like filter_var($url, FILTER_VALIDATE_URL), PHP will accept an URL with invalid password as valid URL. This may lead to functions that rely on URL being valid to mis-parse the URL and produce wrong data as components of the URL.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-28500 ‼
📖 Read
via "National Vulnerability Database".
All versions of package lodash; all versions of package org.fujion.webjars:lodash are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions. Steps to reproduce (provided by reporter Liyuan Chen): var lo = require('lodash'); function build_blank (n) { var ret = "1" for (var i = 0; i < n; i++) { ret += " " } return ret + "1"; } var s = build_blank(50000) var time0 = Date.now(); lo.trim(s) var time_cost0 = Date.now() - time0; console.log("time_cost0: " + time_cost0) var time1 = Date.now(); lo.toNumber(s) var time_cost1 = Date.now() - time1; console.log("time_cost1: " + time_cost1) var time2 = Date.now(); lo.trimEnd(s) var time_cost2 = Date.now() - time2; console.log("time_cost2: " + time_cost2)📖 Read
via "National Vulnerability Database".
🕴 How to Submit a Column to Dark Reading 🕴
📖 Read
via "Dark Reading".
Have a new idea, a lesson learned, or a call to action for your fellow cybersecurity professionals? Here's how to submit your Commentary pieces to Dark Reading.📖 Read
via "Dark Reading".
Dark Reading
How to Submit a Column to Dark Reading
Have a new idea, a lesson learned, or a call to action for your fellow cybersecurity professionals? Here's how to submit your Commentary pieces to Dark Reading.
🕴 100+ Financial Services Firms Targeted in Ransom DDoS Attacks in 2020 🕴
📖 Read
via "Dark Reading".
Consumer banks, exchanges, payment firms, and card issuing companies around the globe were among those hit.📖 Read
via "Dark Reading".
Dark Reading
100+ Financial Services Firms Targeted in Ransom DDoS Attacks in 2020
Consumer banks, exchanges, payment firms, and card issuing companies around the globe were among those hit.
âš Egregor ransomware criminals allegedly busted in Ukraine âš
📖 Read
via "Naked Security".
More good news in the cybercrime law-and-order world, this time a bust of ransomware crooks.📖 Read
via "Naked Security".
Naked Security
Egregor ransomware criminals allegedly busted in Ukraine
More good news in the cybercrime law-and-order world, this time a bust of ransomware crooks.