🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-27073 ‼

A Cross-Site Request Forgery (CSRF) in Online Food Ordering System v1.0 allows attackers to change user details and credentials via a crafted POST request.

📖 Read

via "National Vulnerability Database".

162 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-1394 ‼

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0. It has been classified as critical. This affects the function mysqli_query of the file bsitemp.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222981 was assigned to this vulnerability.

📖 Read

via "National Vulnerability Database".

165 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-46743 ‼

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none.

📖 Read

via "National Vulnerability Database".

171 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-1296 ‼

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workloadâ€™s variables. Fixed in 1.4.6 and 1.5.1.

📖 Read

via "National Vulnerability Database".

175 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-1398 ‼

A vulnerability classified as critical was found in XiaoBingBy TeaCMS 2.0. Affected by this vulnerability is an unknown functionality of the file /admin/upload. The manipulation leads to path traversal: '../filedir'. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-222985 was assigned to this vulnerability.

📖 Read

via "National Vulnerability Database".

194 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-1391 ‼

A vulnerability, which was classified as problematic, was found in SourceCodester Online Tours & Travels Management System 1.0. Affected is an unknown function of the file admin/ab.php. The manipulation of the argument img leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-222978 is the identifier assigned to this vulnerability.

📖 Read

via "National Vulnerability Database".

235 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-1392 ‼

A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is the function save_menu. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222979.

📖 Read

via "National Vulnerability Database".

259 views16:23

🛡 Cybersecurity & Privacy 🛡 - News

🕴 How Businesses Can Get Ready for AI-Powered Security Threats 🕴

Organizations need to take steps now to strengthen their cyber defenses.

📖 Read

via "Dark Reading".

Dark Reading

How Businesses Can Get Ready for AI-Powered Security Threats

Organizations need to take steps now to strengthen their cyber defenses.

263 views17:12

🛡 Cybersecurity & Privacy 🛡 - News

⚠ Firefox 111 patches 11 holes, but not 1 zero-day among them… ⚠

In the game of cricket, 111 is an unauspicious number, but for Firefox, there doesn't seem to be much to worry about this month.

📖 Read

via "Naked Security".

Sophos News

Naked Security – Sophos News

254 views17:40

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23388 ‼

Windows Bluetooth Driver Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".

200 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-21708 ‼

Remote Procedure Call Runtime Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".

185 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23398 ‼

Microsoft Excel Spoofing Vulnerability

📖 Read

via "National Vulnerability Database".

174 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23421 ‼

Windows Kernel Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".

162 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23404 ‼

Windows Point-to-Point Tunneling Protocol Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".

147 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23383 ‼

Service Fabric Explorer Spoofing Vulnerability

📖 Read

via "National Vulnerability Database".

137 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23417 ‼

Windows Partition Management Driver Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".

133 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23400 ‼

Windows DNS Server Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".

133 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23402 ‼

Windows Media Remote Code Execution Vulnerability

📖 Read

via "National Vulnerability Database".

133 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-39216 ‼

Combodo iTop is an open source, web-based IT service management platform. Prior to versions 2.7.8 and 3.0.2-1, the reset password token is generated without any randomness parameter. This may lead to account takeover. The issue is fixed in versions 2.7.8 and 3.0.2-1.

📖 Read

via "National Vulnerability Database".

131 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23420 ‼

Windows Kernel Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".

140 views18:23

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2023-23389 ‼

Microsoft Defender Elevation of Privilege Vulnerability

📖 Read

via "National Vulnerability Database".

143 views18:23

About

Blog

Apps

Platform