π I2P 2.2.0 π
π Read
via "Packet Storm Security".
I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.π Read
via "Packet Storm Security".
Packetstormsecurity
I2P 2.2.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π΄ Deepfakes, Synthetic Media: How Digital Propaganda Undermines Trust π΄
π Read
via "Dark Reading".
Organizations must educate themselves and their users on how to detect, disrupt, and defend against the increasing volume of online disinformation.π Read
via "Dark Reading".
Dark Reading
Deepfakes, Synthetic Media: How Digital Propaganda Undermines Trust
Organizations must educate themselves and their users on how to detect, disrupt, and defend against the increasing volume of online disinformation.
βΌ CVE-2023-27074 βΌ
π Read
via "National Vulnerability Database".
BP Monitoring Management System v1.0 was discovered to contain a SQL injection vulnerability via the emailid parameter in the login page.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1299 βΌ
π Read
via "National Vulnerability Database".
HashiCorp Nomad and Nomad Enterprise 1.5.0 allow a job submitter to escalate to management-level privileges using workload identity and task API. Fixed in 1.5.1.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1396 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file admin/traveller_details.php. The manipulation of the argument address leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222983.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1395 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in SourceCodester Yoga Class Registration System 1.0. It has been declared as problematic. This vulnerability affects the function query of the file admin/user/list.php. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-222982 is the identifier assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1397 βΌ
π Read
via "National Vulnerability Database".
A vulnerability classified as problematic has been found in SourceCodester Online Student Management System 1.0. Affected is an unknown function of the file profile.php. The manipulation of the argument adminname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-222984.π Read
via "National Vulnerability Database".
βΌ CVE-2023-24180 βΌ
π Read
via "National Vulnerability Database".
Libelfin v0.3 was discovered to contain an integer overflow in the load function at elf/mmap_loader.cc. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted elf file.π Read
via "National Vulnerability Database".
βΌ CVE-2023-27073 βΌ
π Read
via "National Vulnerability Database".
A Cross-Site Request Forgery (CSRF) in Online Food Ordering System v1.0 allows attackers to change user details and credentials via a crafted POST request.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1394 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0. It has been classified as critical. This affects the function mysqli_query of the file bsitemp.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222981 was assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2022-46743 βΌ
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1296 βΌ
π Read
via "National Vulnerability Database".
HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workloadΓ’β¬β’s variables. Fixed in 1.4.6 and 1.5.1.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1398 βΌ
π Read
via "National Vulnerability Database".
A vulnerability classified as critical was found in XiaoBingBy TeaCMS 2.0. Affected by this vulnerability is an unknown functionality of the file /admin/upload. The manipulation leads to path traversal: '../filedir'. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222985 was assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1391 βΌ
π Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, was found in SourceCodester Online Tours & Travels Management System 1.0. Affected is an unknown function of the file admin/ab.php. The manipulation of the argument img leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-222978 is the identifier assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-1392 βΌ
π Read
via "National Vulnerability Database".
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is the function save_menu. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222979.π Read
via "National Vulnerability Database".
π΄ How Businesses Can Get Ready for AI-Powered Security Threats π΄
π Read
via "Dark Reading".
Organizations need to take steps now to strengthen their cyber defenses.π Read
via "Dark Reading".
Dark Reading
How Businesses Can Get Ready for AI-Powered Security Threats
Organizations need to take steps now to strengthen their cyber defenses.
β Firefox 111 patches 11 holes, but not 1 zero-day among themβ¦ β
π Read
via "Naked Security".
In the game of cricket, 111 is an unauspicious number, but for Firefox, there doesn't seem to be much to worry about this month.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
βΌ CVE-2023-23388 βΌ
π Read
via "National Vulnerability Database".
Windows Bluetooth Driver Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-21708 βΌ
π Read
via "National Vulnerability Database".
Remote Procedure Call Runtime Remote Code Execution Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-23398 βΌ
π Read
via "National Vulnerability Database".
Microsoft Excel Spoofing Vulnerabilityπ Read
via "National Vulnerability Database".
βΌ CVE-2023-23421 βΌ
π Read
via "National Vulnerability Database".
Windows Kernel Elevation of Privilege Vulnerabilityπ Read
via "National Vulnerability Database".