βΌ CVE-2020-24829 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered in GPAC v0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer overflow in gf_m2ts_section_complete in media_tools/mpegts.c that can cause a denial of service (DOS) via a crafted MP4 file.π Read
via "National Vulnerability Database".
βΌ CVE-2021-3539 βΌ
π Read
via "National Vulnerability Database".
EspoCRM 6.1.6 and prior suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 6.1.7 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36800 βΌ
π Read
via "National Vulnerability Database".
Akaunting version 2.1.12 and earlier suffers from a code injection issue in the Money.php component of the application. A POST sent to /{company_id}/sales/invoices/{invoice_id} with an items[0][price] that includes a PHP callable function is executed directly. This issue was fixed in version 2.1.13 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36803 βΌ
π Read
via "National Vulnerability Database".
Akaunting version 2.1.12 and earlier suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in processing user-supplied avatar images. This issue was fixed in version 2.1.13 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36801 βΌ
π Read
via "National Vulnerability Database".
Akaunting version 2.1.12 and earlier suffers from an authentication bypass issue in the user-controllable field, companies[0]. This issue was fixed in version 2.1.13 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31867 βΌ
π Read
via "National Vulnerability Database".
Pimcore Customer Data Framework version 3.0.0 and earlier suffers from a Boolean-based blind SQL injection issue in the $id parameter of the SegmentAssignmentController.php component of the application. This issue was fixed in version 3.0.2 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36802 βΌ
π Read
via "National Vulnerability Database".
Akaunting version 2.1.12 and earlier suffers from a denial-of-service issue that is triggered by setting a malformed 'locale' variable and sending it in an otherwise normal HTTP POST request. This issue was fixed in version 2.1.13 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31869 βΌ
π Read
via "National Vulnerability Database".
Pimcore AdminBundle version 6.8.0 and earlier suffers from a SQL injection issue in the specificID variable used by the application. This issue was fixed in version 6.9.4 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36804 βΌ
π Read
via "National Vulnerability Database".
Akaunting version 2.1.12 and earlier suffers from a password reset spoofing vulnerability, wherein an attacker can proxy password reset requests through a running Akaunting instance, if that attacker knows the target's e-mail address. This issue was fixed in version 2.1.13 of the product. Please note that this issue is ultimately caused by the defaults provided by the Laravel framework, specifically how proxy headers are handled with respect to multi-tenant implementations. In other words, while this is not technically a vulnerability in Laravel, this default configuration is very likely to lead to practically identical identical vulnerabilities in Laravel projects that implement multi-tenant applications.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36805 βΌ
π Read
via "National Vulnerability Database".
Akaunting version 2.1.12 and earlier suffers from a persistent (type II) cross-site scripting (XSS) vulnerability in the sales invoice processing component of the application. This issue was fixed in version 2.1.13 of the product.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32603 βΌ
π Read
via "National Vulnerability Database".
A server-side request forgery (SSRF) (CWE-918) vulnerability in FortiManager and FortiAnalyser GUI 7.0.0, 6.4.5 and below, 6.2.7 and below, 6.0.11 and below, 5.6.11 and below may allow a remote and authenticated attacker to access unauthorized files and services on the system via specifically crafted web requests.π Read
via "National Vulnerability Database".
βΌ CVE-2021-32598 βΌ
π Read
via "National Vulnerability Database".
An improper neutralization of CRLF sequences in HTTP headers ('HTTP Response Splitting') vulnerability In FortiManager and FortiAnalyzer GUI 7.0.0, 6.4.6 and below, 6.2.8 and below, 6.0.11 and below, 5.6.11 and below may allow an authenticated and remote attacker to perform an HTTP request splitting attack which gives attackers control of the remaining headers and body of the response.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38095 βΌ
π Read
via "National Vulnerability Database".
The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request.π Read
via "National Vulnerability Database".
β Black Hat: Charming Kitten Leaves More Paw Prints β
π Read
via "Threat Post".
IBM X-Force detailed the custom-made "LittleLooter" data stealer and 4+ hours of ITG18 operator training videos revealed by an opsec goof.π Read
via "Threat Post".
Threat Post
Black Hat: Charming Kitten Leaves More Paw Prints
IBM X-Force detailed the custom-made "LittleLooter" data stealer and 4+ hours of ITG18 operator training videos revealed by an opsec goof.
β Black Hat: Microsoftβs Patch for Windows Hello Bypass Bug is Faulty, Researchers Say β
π Read
via "Threat Post".
Researchers show how to circumvent Microsoftβs Windows Hello biometric authentication using a spoofed USB camera.π Read
via "Threat Post".
Threat Post
Black Hat: Microsoftβs Patch for Windows Hello Bypass Bug is Faulty, Researchers Say
Black Hat: Researchers show how to circumvent Microsoftβs Windows Hello biometric authentication using a spoofed USB camera.
π΄ Why Supply Chain Attacks Are Destined to Escalate π΄
π Read
via "Dark Reading".
In his keynote address at Black Hat USA on Wednesday, Matt Tait, chief operating officer at Corellium, called for software platform vendors and security researchers to do their part to thwart the fallout of software supply chain compromises.π Read
via "Dark Reading".
Dark Reading
Why Supply Chain Attacks Are Destined to Escalate
In his keynote address at Black Hat USA on Wednesday, Matt Tait, chief operating officer at Corellium, called for software platform vendors and security researchers to do their part to thwart the fallout of software supply chain compromises.
π΄ Organizations Still Struggle to Hire & Retain Infosec Employees: Report π΄
π Read
via "Dark Reading".
Security leaders are challenged to fill application security and cloud computing jobs in particular, survey data shows.π Read
via "Dark Reading".
Dark Reading
Organizations Still Struggle to Hire & Retain Infosec Employees: Report
Security leaders are challenged to fill application security and cloud computing jobs in particular, survey data shows.
β MacOS Flaw in Telegram Retrieves Deleted Messages β
π Read
via "Threat Post".
Telegram declined to fix a scenario in which the flaw can be exploited, spurring a Trustwave researcher to decline a bug bounty and to disclose his findings instead.π Read
via "Threat Post".
Threat Post
MacOS Flaw in Telegram Retrieves Deleted Messages
Telegram declined to fix a scenario in which the flaw can be exploited, spurring a Trustwave researcher to decline a bug bounty and to disclose his findings instead.
π΄ A New Approach to Securing Authentication Systems' Core Secrets π΄
π Read
via "Dark Reading".
Researchers at Black Hat USA explain issues around defending "Golden Secrets" and present an approach to solving the problem.π Read
via "Dark Reading".
Dark Reading
A New Approach to Securing Authentication Systems' Core Secrets
Researchers at Black Hat USA explain issues around defending "Golden Secrets" and present an approach to solving the problem.
π΄ Researchers Find Significant Vulnerabilities in macOS Privacy Protections π΄
π Read
via "Dark Reading".
Attacks require executing code on a system but foil Apple's approach to protecting private data and systems files.π Read
via "Dark Reading".
Dark Reading
Researchers Find Significant Vulnerabilities in macOS Privacy Protections
Attacks require executing code on a system but foil Apple's approach to protecting private data and systems files.
β βCobalt Strikeβ network attack tool patches crashtastic server bug β
π Read
via "Naked Security".
Ahhhh, the irony! Red-team network attack tool has its very own bug for a Blue Team to counterexploit.π Read
via "Naked Security".
Naked Security
βCobalt Strikeβ network attack tool patches crashtastic server bug
Ahhhh, the irony! Red-team network attack tool has its very own bug for Blue Teams to counterexploit.