🛡 Cybersecurity & Privacy 🛡 - News – Telegram

🛡 Cybersecurity & Privacy 🛡 - News

25.8K subscribers

89.2K links

🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com

Download Telegram

About

Blog

Apps

Platform

🛡 Cybersecurity & Privacy 🛡 - News

25.8K subscribers

🛡 Cybersecurity & Privacy 🛡 - News

📢 Six myths of SIEM 📢

Things have changed when it comes to SIEM solutions

📖 Read

via "ITPro".

Six myths of SIEM

Things have changed when it comes to SIEM solutions

🤯1

388 views01:20

🛡 Cybersecurity & Privacy 🛡 - News

📢 Microsoft 365 protection made MSPEasy 📢

The cloud protection solution built for MSPs

📖 Read

via "ITPro".

Microsoft 365 protection made MSPEasy

The cloud protection solution built for MSPs

397 views01:20

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1219 ‼

SQL injection in RecyclebinController.php in GitHub repository pimcore/pimcore prior to 10.3.5. This vulnerability is capable of steal the data

📖 Read

via "National Vulnerability Database".

319 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27352 ‼

Simple House Rental System v1 was discovered to contain an arbitrary file upload vulnerability via /app/register.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

316 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27357 ‼

Ecommerce-Website v1 was discovered to contain an arbitrary file upload vulnerability via /customer_register.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

269 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28805 ‼

singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a heap-based buffer over-read that might affect a system that compiles untrusted Lua code.

📖 Read

via "National Vulnerability Database".

201 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28796 ‼

jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use-after-free caused by a transaction_t race condition.

📖 Read

via "National Vulnerability Database".

182 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27061 ‼

AeroCMS v0.0.1 was discovered to contain an arbitrary file upload vulnerability via the Post Image function under the Admin panel. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

173 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-26624 ‼

Bootstrap v3.1.11 and v3.3.7 was discovered to contain a cross-site scripting (XSS) vulnerability via the Title parameter in /vendor/views/add_product.php.

📖 Read

via "National Vulnerability Database".

166 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27349 ‼

Social Codia SMS v1 was discovered to contain an arbitrary file upload vulnerability via addteacher.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

158 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27991 ‼

Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities at /staff_login.php via the Staff ID and Staff Password parameters.

📖 Read

via "National Vulnerability Database".

155 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27351 ‼

Zoo Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /public_html/apply_vacancy. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

156 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28002 ‼

Movie Seat Reservation v1 was discovered to contain an unauthenticated file disclosure vulnerability via /index.php?page=home.

📖 Read

via "National Vulnerability Database".

158 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28001 ‼

Movie Seat Reservation v1 was discovered to contain a SQL injection vulnerability at /index.php?page=reserve via the id parameter.

📖 Read

via "National Vulnerability Database".

157 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27062 ‼

AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability via add_post.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field.

📖 Read

via "National Vulnerability Database".

161 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27346 ‼

Ecommece-Website v1.1.0 was discovered to contain an arbitrary file upload vulnerability via /admin/index.php?slides. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

168 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27348 ‼

Social Codia SMS v1 was discovered to contain a stored cross-site scripting (XSS) vulnerability via add_post.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field.

📖 Read

via "National Vulnerability Database".

184 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-28000 ‼

Car Rental System v1.0 was discovered to contain a SQL injection vulnerability at /Car_Rental/booking.php via the id parameter.

📖 Read

via "National Vulnerability Database".

194 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27063 ‼

AeroCMS v0.0.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability via view_all_comments.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comments text field.

📖 Read

via "National Vulnerability Database".

222 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27992 ‼

Zoo Management System v1.0 was discovered to contain a SQL injection vulnerability at /public_html/animals via the class_id parameter.

📖 Read

via "National Vulnerability Database".

240 views10:38

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-27064 ‼

Musical World v1 was discovered to contain an arbitrary file upload vulnerability via uploaded_songs.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

📖 Read

via "National Vulnerability Database".

279 views10:38