β βAppallingβ Riot Games Job Fraud Takes Aim at Wallets β
π Read
via "Threat Post".
Scammers are using fake job listings to empty the wallets of young, hopeful victims looking to break into the gaming industry.π Read
via "Threat Post".
Threat Post
βAppallingβ Riot Games Job Fraud Takes Aim at Wallets
Scammers are using fake job listings to empty the wallets of young, hopeful victims looking to break into the gaming industry.
βΌ CVE-2021-38917 βΌ
π Read
via "National Vulnerability Database".
IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary host system memory through a series of carefully crafted service procedures. IBM X-Force ID: 210018.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31745 βΌ
π Read
via "National Vulnerability Database".
Session Fixation vulnerability in login.php in Pluck-CMS Pluck 4.7.15 allows an attacker to sustain unauthorized access to the platform. Because Pluck does not invalidate prior sessions after a password change, access can be sustained even after an administrator performs regular remediation attempts such as resetting their password.π Read
via "National Vulnerability Database".
βΌ CVE-2021-36911 βΌ
π Read
via "National Vulnerability Database".
Stored Cross-Site Scripting (XSS) vulnerability discovered in WordPress Comment Engine Pro plugin (versions <= 1.0), could be exploited by users with Editor or higher role.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37935 βΌ
π Read
via "National Vulnerability Database".
An information disclosure vulnerability in the login page of Huntflow Enterprise before 3.10.4 could allow an unauthenticated, remote user to get information about the domain name of the configured LDAP server. An attacker could exploit this vulnerability by requesting the login page and searching for the "isLdap" JavaScript parameter in the HTML source code.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38937 βΌ
π Read
via "National Vulnerability Database".
IBM PowerVM Hypervisor FW940, FW950, and FW1010 could allow an authenticated user to cause the system to crash using a specially crafted IBMi Hypervisor call. IBM X-Force ID: 210894.π Read
via "National Vulnerability Database".
βΌ CVE-2021-37934 βΌ
π Read
via "National Vulnerability Database".
Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise before 3.10.14 could allow an unauthenticated, remote user to perform multiple login attempts for brute-force password guessing.π Read
via "National Vulnerability Database".
βΌ CVE-2021-43813 βΌ
π Read
via "National Vulnerability Database".
Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files with the extension .md to authenticated users only. Grafana Cloud instances have not been affected by the vulnerability. Users should upgrade to patched versions 8.3.2 or 7.5.12. For users who cannot upgrade, running a reverse proxy in front of Grafana that normalizes the PATH of the request will mitigate the vulnerability. The proxy will have to also be able to handle url encoded paths. Alternatively, for fully lowercase or fully uppercase .md files, users can block /api/plugins/.*/markdown/.* without losing any functionality beyond inlined plugin help text.π Read
via "National Vulnerability Database".
βΌ CVE-2021-29214 βΌ
π Read
via "National Vulnerability Database".
A security vulnerability has been identified in HPE StoreServ Management Console (SSMC). An authenticated SSMC administrator could exploit the vulnerability to inject code and elevate their privilege in SSMC. The scope of this vulnerability is limited to SSMC. Note: The arrays being managed are not impacted by this vulnerability. This vulnerability impacts SSMC versions 3.4 GA to 3.8.1.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31746 βΌ
π Read
via "National Vulnerability Database".
Zip Slip vulnerability in Pluck-CMS Pluck 4.7.15 allows an attacker to upload specially crafted zip files, resulting in directory traversal and potentially arbitrary code execution.π Read
via "National Vulnerability Database".
β Next-Gen Maldocs & How to Solve the Human Vulnerability β
π Read
via "Threat Post".
Malicious email attachments with macros are one of the most common ways hackers get in through the door. Huntress security researcher John Hammond discusses how threat hunters can fight back.π Read
via "Threat Post".
Threat Post
Next-Gen Maldocs & How to Solve the Human Vulnerability
Malicious email attachments with macros are one of the most common ways hackers get in through the door. Huntress security researcher John Hammond discusses how threat hunters can fight back.
π¦Ώ Study: Most phishing pages are abandoned or disappear in a matter of days π¦Ώ
π Read
via "Tech Republic".
Research from Kaspersky finds that a quarter of phishing sites are gone within 13 hours β how in the world can we catch and stop cyber criminals that move so quickly?π Read
via "Tech Republic".
TechRepublic
Study: Most phishing pages are abandoned or disappear in a matter of days
Research from Kaspersky finds that a quarter of phishing sites are gone within 13 hours β how in the world can we catch and stop cyber criminals that move so quickly?
π¦Ώ Hackers reported 21% more vulnerabilities in 2021 than in 2020 π¦Ώ
π Read
via "Tech Republic".
HackerOne reports that hackers are reporting more bugs and earning bigger bounties, but is an increase in testing or an increase in software vulnerabilities the cause of the jump?π Read
via "Tech Republic".
TechRepublic
Hackers reported 21% more vulnerabilities in 2021 than in 2020
HackerOne reports that hackers are reporting more bugs and earning bigger bounties, but is an increase in testing or an increase in software vulnerabilities the cause of the jump?
βΌ CVE-2021-4089 βΌ
π Read
via "National Vulnerability Database".
snipe-it is vulnerable to Improper Access Controlπ Read
via "National Vulnerability Database".
βΌ CVE-2021-31747 βΌ
π Read
via "National Vulnerability Database".
Missing SSL Certificate Validation issue exists in Pluck 4.7.15 in update_applet.php, which could lead to man-in-the-middle attacks.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23639 βΌ
π Read
via "National Vulnerability Database".
The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execution (RCE) due to utilizing the library gray-matter to parse front matter content, without disabling the JS engine.π Read
via "National Vulnerability Database".
βΌ CVE-2021-27983 βΌ
π Read
via "National Vulnerability Database".
Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents page.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23663 βΌ
π Read
via "National Vulnerability Database".
All versions of package sey are vulnerable to Prototype Pollution via the deepmerge() function.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23700 βΌ
π Read
via "National Vulnerability Database".
All versions of package merge-deep2 are vulnerable to Prototype Pollution via the mergeDeep() function.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23463 βΌ
π Read
via "National Vulnerability Database".
The package com.h2database:h2 from 0 and before 2.0.202 are vulnerable to XML External Entity (XXE) Injection via the org.h2.jdbc.JdbcSQLXML class object, when it receives parsed string data from org.h2.jdbc.JdbcResultSet.getSQLXML() method. If it executes the getSource() method when the parameter is DOMSource.class it will trigger the vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2021-23561 βΌ
π Read
via "National Vulnerability Database".
All versions of package comb are vulnerable to Prototype Pollution via the deepMerge() function.π Read
via "National Vulnerability Database".