βΌ CVE-2021-25802 βΌ
π Read
via "National Vulnerability Database".
A buffer overflow vulnerability in the AVI_ExtractSubtitle component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25803 βΌ
π Read
via "National Vulnerability Database".
A buffer overflow vulnerability in the vlc_input_attachment_New component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32631 βΌ
π Read
via "National Vulnerability Database".
Common is a package of common modules that can be accessed by NIMBLE services. Common before commit number 3b96cb0293d3443b870351945f41d7d55cb34b53 did not properly verify the signature of JSON Web Tokens. This allows someone to forge a valid JWT. Being able to forge JWTs may lead to authentication bypasses. Commit number 3b96cb0293d3443b870351945f41d7d55cb34b53 contains a patch for the issue. As a workaround, one may use the parseClaimsJws method to correctly verify the signature of a JWT.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31292 βΌ
π Read
via "National Vulnerability Database".
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a heap-based buffer overflow and cause a denial of service (DOS) via crafted metadata.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25804 βΌ
π Read
via "National Vulnerability Database".
A NULL-pointer dereference in "Open" in avi.c of VideoLAN VLC Media Player 3.0.11 can a denial of service (DOS) in the application.π Read
via "National Vulnerability Database".
βΌ CVE-2021-25801 βΌ
π Read
via "National Vulnerability Database".
A buffer overflow vulnerability in the __Parse_indx component of VideoLAN VLC Media Player 3.0.11 allows attackers to cause an out-of-bounds read via a crafted .avi file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32792 βΌ
π Read
via "National Vulnerability Database".
mod_auth_openidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In mod_auth_openidc before version 2.4.9, there is an XSS vulnerability in when using `OIDCPreservePost On`.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31291 βΌ
π Read
via "National Vulnerability Database".
A heap-based buffer overflow vulnerability in jp2image.cpp of Exiv2 0.27.3 allows attackers to cause a denial of service (DOS) via crafted metadata.π Read
via "National Vulnerability Database".
π Ransomware Prevention Site Saves Users $1 Billion π
π Read
via "".
Five years after its inception, No More Ransom, the collaborative effort formed to combat ransomware attackers, has logged some impressive numbers.π Read
via "".
Digital Guardian
Ransomware Prevention Site Saves Users $1 Billion
Five years after its inception, No More Ransom, the collaborative effort formed to combat ransomware attackers, has logged some impressive numbers.
β Microsoft Rushes Fix for βPetitPotamβ Attack PoC β
π Read
via "Threat Post".
Microsoft releases mitigations for a Windows NT LAN Manager exploit that forces remote Windows systems to reveal password hashes that can be easily cracked.π Read
via "Threat Post".
Threat Post
Microsoft Rushes Fix for βPetitPotamβ Attack PoC
Microsoft releases mitigations for a Windows NT LAN Manager exploit that forces remote Windows systems to reveal password hashes that can be easily cracked.
βΌ CVE-2021-36563 βΌ
π Read
via "National Vulnerability Database".
The CheckMK management web console (versions 1.5.0 to 2.0.0) does not sanitise user input in various parameters of the WATO module. This allows an attacker to open a backdoor on the device with HTML content and interpreted by the browser (such as JavaScript or other client-side scripts), the XSS payload will be triggered when the user accesses some specific sections of the application. In the same sense a very dangerous potential way would be when an attacker who has the monitor role (not administrator) manages to get a stored XSS to steal the secretAutomation (for the use of the API in administrator mode) and thus be able to create another administrator user who has high privileges on the CheckMK monitoring web console. Another way is that persistent XSS allows an attacker to modify the displayed content or change the victim's information. Successful exploitation requires access to the web management interface, either with valid credentials or with a hijacked session.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37394 βΌ
π Read
via "National Vulnerability Database".
In RPCMS v1.8 and below, attackers can interact with API and change variable "role" to "admin" to achieve admin user registration.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37392 βΌ
π Read
via "National Vulnerability Database".
In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. When the API functions are enabled, the attacker can use API to update user nickname with XSS payload and achieve stored XSS. Users who view the articles published by the injected user will trigger the XSS.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32794 βΌ
π Read
via "National Vulnerability Database".
ArchiSteamFarm is a C# application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code `POST /Api/ASF` ASF API endpoint responsible for updating global ASF config incorrectly removed `IPCPassword` from the resulting config when the caller did not specify it explicitly. Due to the above, it was possible for the user to accidentally remove `IPCPassword` security measure from his IPC interface when updating global ASF config, which exists as part of global config update functionality in ASF-ui. Removal of `IPCPassword` possesses a security risk, as unauthorized users may in result access the IPC interface after such modification. The issue is patched in ASF V5.1.2.4 and future versions. We recommend to manually verify that `IPCPassword` is specified after update, and if not, set it accordingly. In default settings, ASF is configured to allow IPC access from `localhost` only and should not affect majority of users.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37393 βΌ
π Read
via "National Vulnerability Database".
In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. Attacker can use "update password" function to inject XSS payloads into nickname variable, and achieve stored XSS. Users who view the articles published by the injected user will trigger the XSS.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37473 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `product.php` is vulnerable to sql injection on parameter `products-order` through a post request, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37476 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `product.php` is vulnerable to sql injection on parameter `id` through a post request, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37475 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `templates.php` is vulnerable to sql injection on parameter `template-properties-order`, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37477 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `structure.php` is vulnerable to sql injection on parameter `children_order`, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37478 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function `block` is vulnerable to sql injection on parameter `block-order`, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
β Babuk Ransomware Gang Ransomed, New Forum Stuffed With Porn β
π Read
via "Threat Post".
A comment spammer flooded Babukβs new ransomware forum with gay orgy porn GIFs and demanded $5K in bitcoin.π Read
via "Threat Post".
Threat Post
Babuk Ransomware Gang Ransomed, New Forum Stuffed With Porn
A comment spammer flooded Babukβs new ransomware forum with gay orgy porn GIFs and demanded $5K in bitcoin.