βΌ CVE-2021-31291 βΌ
π Read
via "National Vulnerability Database".
A heap-based buffer overflow vulnerability in jp2image.cpp of Exiv2 0.27.3 allows attackers to cause a denial of service (DOS) via crafted metadata.π Read
via "National Vulnerability Database".
π Ransomware Prevention Site Saves Users $1 Billion π
π Read
via "".
Five years after its inception, No More Ransom, the collaborative effort formed to combat ransomware attackers, has logged some impressive numbers.π Read
via "".
Digital Guardian
Ransomware Prevention Site Saves Users $1 Billion
Five years after its inception, No More Ransom, the collaborative effort formed to combat ransomware attackers, has logged some impressive numbers.
β Microsoft Rushes Fix for βPetitPotamβ Attack PoC β
π Read
via "Threat Post".
Microsoft releases mitigations for a Windows NT LAN Manager exploit that forces remote Windows systems to reveal password hashes that can be easily cracked.π Read
via "Threat Post".
Threat Post
Microsoft Rushes Fix for βPetitPotamβ Attack PoC
Microsoft releases mitigations for a Windows NT LAN Manager exploit that forces remote Windows systems to reveal password hashes that can be easily cracked.
βΌ CVE-2021-36563 βΌ
π Read
via "National Vulnerability Database".
The CheckMK management web console (versions 1.5.0 to 2.0.0) does not sanitise user input in various parameters of the WATO module. This allows an attacker to open a backdoor on the device with HTML content and interpreted by the browser (such as JavaScript or other client-side scripts), the XSS payload will be triggered when the user accesses some specific sections of the application. In the same sense a very dangerous potential way would be when an attacker who has the monitor role (not administrator) manages to get a stored XSS to steal the secretAutomation (for the use of the API in administrator mode) and thus be able to create another administrator user who has high privileges on the CheckMK monitoring web console. Another way is that persistent XSS allows an attacker to modify the displayed content or change the victim's information. Successful exploitation requires access to the web management interface, either with valid credentials or with a hijacked session.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37394 βΌ
π Read
via "National Vulnerability Database".
In RPCMS v1.8 and below, attackers can interact with API and change variable "role" to "admin" to achieve admin user registration.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37392 βΌ
π Read
via "National Vulnerability Database".
In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. When the API functions are enabled, the attacker can use API to update user nickname with XSS payload and achieve stored XSS. Users who view the articles published by the injected user will trigger the XSS.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32794 βΌ
π Read
via "National Vulnerability Database".
ArchiSteamFarm is a C# application with primary purpose of idling Steam cards from multiple accounts simultaneously. Due to a bug in ASF code `POST /Api/ASF` ASF API endpoint responsible for updating global ASF config incorrectly removed `IPCPassword` from the resulting config when the caller did not specify it explicitly. Due to the above, it was possible for the user to accidentally remove `IPCPassword` security measure from his IPC interface when updating global ASF config, which exists as part of global config update functionality in ASF-ui. Removal of `IPCPassword` possesses a security risk, as unauthorized users may in result access the IPC interface after such modification. The issue is patched in ASF V5.1.2.4 and future versions. We recommend to manually verify that `IPCPassword` is specified after update, and if not, set it accordingly. In default settings, ASF is configured to allow IPC access from `localhost` only and should not affect majority of users.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37393 βΌ
π Read
via "National Vulnerability Database".
In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. Attacker can use "update password" function to inject XSS payloads into nickname variable, and achieve stored XSS. Users who view the articles published by the injected user will trigger the XSS.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37473 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `product.php` is vulnerable to sql injection on parameter `products-order` through a post request, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37476 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `product.php` is vulnerable to sql injection on parameter `id` through a post request, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37475 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `templates.php` is vulnerable to sql injection on parameter `template-properties-order`, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37477 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function in `structure.php` is vulnerable to sql injection on parameter `children_order`, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37478 βΌ
π Read
via "National Vulnerability Database".
In NavigateCMS version 2.9.4 and below, function `block` is vulnerable to sql injection on parameter `block-order`, which results in arbitrary sql query execution in the backend database.π Read
via "National Vulnerability Database".
β Babuk Ransomware Gang Ransomed, New Forum Stuffed With Porn β
π Read
via "Threat Post".
A comment spammer flooded Babukβs new ransomware forum with gay orgy porn GIFs and demanded $5K in bitcoin.π Read
via "Threat Post".
Threat Post
Babuk Ransomware Gang Ransomed, New Forum Stuffed With Porn
A comment spammer flooded Babukβs new ransomware forum with gay orgy porn GIFs and demanded $5K in bitcoin.
βΌ CVE-2020-17952 βΌ
π Read
via "National Vulnerability Database".
A remote code execution (RCE) vulnerability in /library/think/App.php of Twothink v2.0 allows attackers to execute arbitrary PHP code.π Read
via "National Vulnerability Database".
βΌ CVE-2020-18171 βΌ
π Read
via "National Vulnerability Database".
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges.π Read
via "National Vulnerability Database".
β€1
βΌ CVE-2021-37555 βΌ
π Read
via "National Vulnerability Database".
TX9 Automatic Food Dispenser v3.2.57 devices allow access to a shell as root/superuser, a related issue to CVE-2019-16734. To connect, the telnet service is used on port 23 with the default password of 059AnkJ for the root account. The user can then download the filesystem through preinstalled BusyBox utilities (e.g., tar and nc).π Read
via "National Vulnerability Database".
βΌ CVE-2020-18173 βΌ
π Read
via "National Vulnerability Database".
A DLL injection vulnerability in 1password.dll of 1Password 7.3.712 allows attackers to execute arbitrary code.π Read
via "National Vulnerability Database".
βΌ CVE-2020-23242 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) vulnerability in NavigateCMS 2.9 when performing a Create or Edit via the Tools feature.π Read
via "National Vulnerability Database".
βΌ CVE-2020-23238 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) vulnerability in Evolution CMS 2.0.2 via the Document Manager feature.π Read
via "National Vulnerability Database".
βΌ CVE-2020-18172 βΌ
π Read
via "National Vulnerability Database".
A code injection vulnerability in the SeDebugPrivilege component of Trezor Bridge 2.0.27 allows attackers to escalate privileges.π Read
via "National Vulnerability Database".