โผ CVE-2021-24428 โผ
๐ Read
via "National Vulnerability Database".
The RSS for Yandex Turbo WordPress plugin through 1.30 does not sanitise or escape some of its settings before saving and outputing them in the admin dashboard, leading to an Authenticated Stored Cross-Site Scripting issue even when the unfiltered_html capability is disallowed.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-24503 โผ
๐ Read
via "National Vulnerability Database".
The Popular Brand Icons รยขรขโยฌรขโฌล Simple Icons WordPress plugin before 2.7.8 does not sanitise or validate some of its shortcode parameters, such as "color", "size" or "class", allowing users with a role as low as Contributor to set Cross-Site payload in them. A post made by a contributor would still have to be approved by an admin to have the XSS triggered in the frontend, however, higher privilege users, such as editor could exploit this without the need of approval, and even when the blog disallows the unfiltered_html capability.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-24483 โผ
๐ Read
via "National Vulnerability Database".
The get_poll_categories(), get_polls() and get_reports() functions in the Poll Maker WordPress plugin before 3.2.1 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard๐ Read
via "National Vulnerability Database".
โผ CVE-2021-24476 โผ
๐ Read
via "National Vulnerability Database".
The Steam Group Viewer WordPress plugin through 2.1 does not sanitise or escape its "Steam Group Address" settings before outputting it in the page, leading to an authenticated Stored Cross-Site Scripting issue๐ Read
via "National Vulnerability Database".
โผ CVE-2021-24479 โผ
๐ Read
via "National Vulnerability Database".
The DrawBlog WordPress plugin through 0.90 does not sanitise or validate some of its settings before outputting them back in the page, leading to an authenticated stored Cross-Site Scripting issue๐ Read
via "National Vulnerability Database".
โผ CVE-2021-24504 โผ
๐ Read
via "National Vulnerability Database".
The WP LMS รยขรขโยฌรขโฌล Best WordPress LMS Plugin WordPress plugin through 1.1.2 does not properly sanitise or validate its User Field Titles, allowing XSS payload to be used in them. Furthermore, no CSRF and capability checks were in place, allowing such attack to be performed either via CSRF or as any user (including unauthenticated)๐ Read
via "National Vulnerability Database".
โผ CVE-2021-34574 โผ
๐ Read
via "National Vulnerability Database".
In MB connect line mymbCONNECT24, mbCONNECT24 in versions <= 2.8.0 an authenticated attacker can change the password of his account into a new password that violates the password policy by intercepting and modifying the request that is send to the server.๐ Read
via "National Vulnerability Database".
๐ด Multiple Zero-Day Flaws Discovered in Popular Hospital Pneumatic Tube System ๐ด
๐ Read
via "Dark Reading".
"PwnedPiper" flaws could allow attackers to disrupt delivery of lab samples or steal hospital employee credentials, new research shows.๐ Read
via "Dark Reading".
Dark Reading
Multiple Zero-Day Flaws Discovered in Popular Hospital Pneumatic Tube System
'PwnedPiper' flaws could allow attackers to disrupt delivery of lab samples, or steal hospital employee credentials, new research shows.
โผ CVE-2021-37164 โผ
๐ Read
via "National Vulnerability Database".
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, the received data is copied to a stack buffer. An off-by-3 condition can occur, resulting in a stack-based buffer overflow.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37160 โผ
๐ Read
via "National Vulnerability Database".
A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation (e.g., cryptographic signature validation) during a File Upload for a firmware update.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37216 โผ
๐ Read
via "National Vulnerability Database".
QSAN Storage Manager header page parameters does not filter special characters. Remote attackers can inject JavaScript without logging in and launch reflected XSS attacks to access and modify specific data.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37167 โผ
๐ Read
via "National Vulnerability Database".
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using the default credentials can gain root access to the device, which provides permissions for all of the functionality of the device.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37162 โผ
๐ Read
via "National Vulnerability Database".
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. If an attacker sends a malformed UDP message, a buffer underflow occurs, leading to an out-of-bounds copy and possible remote code execution.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37166 โผ
๐ Read
via "National Vulnerability Database".
A buffer overflow issue leading to denial of service was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When HMI3 starts up, it binds a local service to a TCP port on all interfaces of the device, and takes extensive time for the GUI to connect to the TCP socket, allowing the connection to be hijacked by an external attacker.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-20332 โผ
๐ Read
via "National Vulnerability Database".
Specific MongoDB Rust Driver versions can include credentials used by the connection pool to authenticate connections in the monitoring event that is emitted when the pool is created. The user's logging infrastructure could then potentially ingest these events and unexpectedly leak the credentials. Note that such monitoring is not enabled by default.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37161 โผ
๐ Read
via "National Vulnerability Database".
A buffer overflow issue was discovered in the HMI3 Control Panel contained within the Swisslog Healthcare Nexus Panel, operated by released versions of software before Nexus Software 7.2.5.7. A buffer overflow allows an attacker to overwrite an internal queue data structure and can lead to remote code execution.๐ Read
via "National Vulnerability Database".
โผ CVE-2021-37163 โผ
๐ Read
via "National Vulnerability Database".
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus operated by released versions of software before Nexus Software 7.2.5.7. The device has two user accounts with passwords that are hardcoded.๐ Read
via "National Vulnerability Database".
๐ SQLMAP - Automatic SQL Injection Tool 1.5.8 ๐
๐ Read
via "Packet Storm Security".
sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.๐ Read
via "Packet Storm Security".
Packetstormsecurity
SQLMAP - Automatic SQL Injection Tool 1.5.8 โ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
๐ฆฟ Behind the scenes: A day in the life of a cybersecurity expert ๐ฆฟ
๐ Read
via "Tech Republic".
Leading a team is kind of like when a burglar alarm goes off and "you're the police," says the head of cybersecurity at ExpressVPN.๐ Read
via "Tech Republic".
TechRepublic
Behind the scenes: A day in the life of a cybersecurity expert
Leading a team is kind of like when a burglar alarm goes off and "you're the police," says the head of cybersecurity at ExpressVPN.
๐ฆฟ Set up an SSH tarpit in Ubuntu Server 20.04: Here's how ๐ฆฟ
๐ Read
via "Tech Republic".
You can add an SSH tarpit to Ubuntu Server with the help of endlessh. Jack Wallen shows you how.๐ Read
via "Tech Republic".
TechRepublic
Set up an SSH tarpit in Ubuntu Server 20.04: Here's how
You can add an SSH tarpit to Ubuntu Server with the help of endlessh. Jack Wallen shows you how.
โผ CVE-2021-29741 โผ
๐ Read
via "National Vulnerability Database".
IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a local user to exploit a vulnerability in Korn Shell (ksh) to gain root privileges. IBM X-Force ID: 201478.๐ Read
via "National Vulnerability Database".