‼ CVE-2021-41066 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in Listary through 6. When Listary is configured as admin, Listary will not ask for permissions again if a user tries to access files on the system from Listary itself (it will bypass UAC protection; there is no privilege validation of the current user that runs via Listary).📖 Read
via "National Vulnerability Database".
‼ CVE-2021-3836 ‼
📖 Read
via "National Vulnerability Database".
dbeaver is vulnerable to Improper Restriction of XML External Entity Reference📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39312 ‼
📖 Read
via "National Vulnerability Database".
The True Ranker plugin <= 2.2.2 for WordPress allows arbitrary files, including sensitive configuration files such as wp-config.php, to be accessed via the src parameter found in the ~/admin/vendor/datatables/examples/resources/examples.php file.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-4107 ‼
📖 Read
via "National Vulnerability Database".
yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')📖 Read
via "National Vulnerability Database".
‼ CVE-2021-44949 ‼
📖 Read
via "National Vulnerability Database".
glFusion CMS 1.7.9 is affected by an access control vulnerability via /public_html/users.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-42064 ‼
📖 Read
via "National Vulnerability Database".
If configured to use an Oracle database and if a query is created using the flexible search java api with a parameterized "in" clause, SAP Commerce - versions 1905, 2005, 2105, 2011, allows attacker to execute crafted database queries, exposing backend database. The vulnerability is present if the parameterized "in" clause accepts more than 1000 values.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-42367 ‼
📖 Read
via "National Vulnerability Database".
The Variation Swatches for WooCommerce WordPress plugin is vulnerable to Stored Cross-Site Scripting via several parameters found in the ~/includes/class-menu-page.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.1.1. Due to missing authorization checks on the tawcvs_save_settings function, low-level authenticated users such as subscribers can exploit this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39319 ‼
📖 Read
via "National Vulnerability Database".
The duoFAQ - Responsive, Flat, Simple FAQ WordPess plugin is vulnerable to Reflected Cross-Site Scripting via the msg parameter found in the ~/duogeek/duogeek-panel.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.4.8.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-44232 ‼
📖 Read
via "National Vulnerability Database".
SAF-T Framework Transaction SAFTN_G allows an attacker to exploit insufficient validation of path information provided by normal user, leading to full server directory access. The attacker can see the whole filesystem structure but cannot overwrite, delete, or corrupt arbitrary files on the server.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-44231 ‼
📖 Read
via "National Vulnerability Database".
Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39315 ‼
📖 Read
via "National Vulnerability Database".
The Magic Post Voice WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the ids parameter found in the ~/inc/admin/main.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.2.📖 Read
via "National Vulnerability Database".
👍1
‼ CVE-2021-44549 ‼
📖 Read
via "National Vulnerability Database".
Apache Sling Commons Messaging Mail provides a simple layer on top of JavaMail/Jakarta Mail for OSGi to send mails via SMTPS. To reduce the risk of "man in the middle" attacks additional server identity checks must be performed when accessing mail servers. For compatibility reasons these additional checks are disabled by default in JavaMail/Jakarta Mail. The SimpleMailService in Apache Sling Commons Messaging Mail 1.0 lacks an option to enable these checks for the shared mail session. A user could enable these checks nevertheless by accessing the session via the message created by SimpleMessageBuilder and setting the property mail.smtps.ssl.checkserveridentity to true. Apache Sling Commons Messaging Mail 2.0 adds support for enabling server identity checks and these checks are enabled by default. - https://javaee.github.io/javamail/docs/SSLNOTES.txt - https://javaee.github.io/javamail/docs/api/com/sun/mail/smtp/package-summary.html - https://github.com/eclipse-ee4j/mail/issues/429📖 Read
via "National Vulnerability Database".
‼ CVE-2021-39313 ‼
📖 Read
via "National Vulnerability Database".
The Simple Image Gallery WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the msg parameter found in the ~/simple-image-gallery.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.6.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-42069 ‼
📖 Read
via "National Vulnerability Database".
When a user opens manipulated Tagged Image File Format (.tif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application📖 Read
via "National Vulnerability Database".
❌ How to Buy Precious Patching Time as Log4j Exploits Fly ❌
📖 Read
via "Threat Post".
Podcast: Cybereason shares details about its vaccine: a fast shot in the arm released within hours of the Apache Log4j zero-day horror show being disclosed.📖 Read
via "Threat Post".
❌ What the Log4Shell Bug Means for SMBs: Experts Weigh In ❌
📖 Read
via "Threat Post".
An exclusive roundtable of security researchers discuss the specific implications of CVE-2021-44228 for smaller businesses, including what's vulnerable, what an attack looks like and to how to remediate.📖 Read
via "Threat Post".
Threat Post
What the Log4Shell Bug Means for SMBs: Experts Weigh In
An exclusive roundtable of security researchers discuss the specific implications of CVE-2021-44228 for smaller businesses, including what's vulnerable, what an attack looks like and to how to remediate.
🦿 The 10 worst password snafus of 2021 🦿
📖 Read
via "Tech Republic".
Dashlane's sixth annual list of the year's worst password offenders reveals the biggest password security mishaps for 2021.📖 Read
via "Tech Republic".
TechRepublic
The 10 worst password snafus of 2021
Dashlane's sixth annual list of the year's worst password offenders reveals the biggest password security mishaps for 2021.
🦿 E-commerce: How to build customer trust without sacrificing security 🦿
📖 Read
via "Tech Republic".
Companies must attempt to divert cybercriminals without inconveniencing or possibly exposing customers and their data. One expert explains how it's possible.📖 Read
via "Tech Republic".
TechRepublic
E-commerce: How to build customer trust without sacrificing security
Companies must attempt to divert cybercriminals without inconveniencing or possibly exposing customers and their data. One expert explains how it's possible.
🕴 Source Code Leaks: The Real Problem Nobody Is Paying Attention To 🕴
📖 Read
via "Dark Reading".
Source code is a corporate asset like any other, which makes it an attractive target for hackers.📖 Read
via "Dark Reading".
Dark Reading
Source Code Leaks: The Real Problem Nobody Is Paying Attention To
Source code is a corporate asset like any other, which makes it an attractive target for hackers.
‼ CVE-2021-44041 ‼
📖 Read
via "National Vulnerability Database".
UiPath Assistant 21.4.4 will load and execute attacker controlled data from the file path supplied to the --dev-widget argument of the URI handler for uipath-assistant://. This allows an attacker to execute code on a victim's machine or capture NTLM credentials by supplying a networked or WebDAV file path.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-38950 ‼
📖 Read
via "National Vulnerability Database".
IBM MQ on HPE NonStop 8.0.4 and 8.1.0 is vulnerable to a privilege escalation attack when SharedBindingsUserId is set to effective. IBM X-ForceID: 211404.📖 Read
via "National Vulnerability Database".