‼ CVE-2023-26756 ‼
📖 Read
via "National Vulnerability Database".
The login page of Revive Adserver v5.4.1 is vulnerable to brute force attacks.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27649 ‼
📖 Read
via "National Vulnerability Database".
SQL injection vulnerability found in Trusted Tools Free Music v.2.1.0.47, v.2.0.0.46, v.1.9.1.45, v.1.8.2.43 allows a remote attacker to cause a denial of service via the search history table📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29569 ‼
📖 Read
via "National Vulnerability Database".
Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via ffi_cb_impl_wpwwwww at src/mjs_ffi.c. This vulnerability can lead to a Denial of Service (DoS).📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27193 ‼
📖 Read
via "National Vulnerability Database".
An issue found in DUALSPACE v.1.1.3 allows a local attacker to gain privileges via the key_ad_new_user_avoid_time field.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2053 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability, which was classified as critical, has been found in Campcodes Advanced Online Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/candidates_row.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-225938 is the identifier assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27651 ‼
📖 Read
via "National Vulnerability Database".
An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges via the update_info field of the _default_.xml file.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26559 ‼
📖 Read
via "National Vulnerability Database".
A directory traversal vulnerability in Oxygen XML Web Author before 25.0.0.3 build 2023021715 and Oxygen Content Fusion before 5.0.3 build 2023022015 allows an attacker to read files from a WEB-INF directory via a crafted HTTP request. (XML Web Author 24.1.0.3 build 2023021714 and 23.1.1.4 build 2023021715 are also fixed versions.)📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27666 ‼
📖 Read
via "National Vulnerability Database".
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the name parameter at /classes/SystemSettings.php?f=update_settings.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-29584 ‼
📖 Read
via "National Vulnerability Database".
mp4v2 v2.0.0 was discovered to contain a heap buffer overflow via the MP4GetVideoProfileLevel function at /src/mp4.cpp.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27648 ‼
📖 Read
via "National Vulnerability Database".
Directory Traversal vulnerability found in T-ME Studios Change Color of Keypad v.1.275.1.277 allows a remote attacker to execute arbitrary code via the dex file in the internal storage.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-1617 ‼
📖 Read
via "National Vulnerability Database".
Improper Authentication vulnerability in B&R Industrial Automation B&R VC4 (VNC-Server modules). This vulnerability may allow an unauthenticated network-based attacker to bypass the authentication mechanism of the VC4 visualization on affected devices. The impact of this vulnerability depends on the functionality provided in the visualization. This issue affects B&R VC4: from 3.* through 3.96.7, from 4.0* through 4.06.7, from 4.1* through 4.16.3, from 4.2* through 4.26.8, from 4.3* through 4.34.6, from 4.4* through 4.45.1, from 4.5* through 4.45.3, from 4.7* through 4.72.9.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-47027 ‼
📖 Read
via "National Vulnerability Database".
Timmystudios Fast Typing Keyboard v1.275.1.162 allows unauthorized apps to overwrite arbitrary files in its internal storage via a dictionary traversal vulnerability and achieve arbitrary code execution.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2055 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability has been found in Campcodes Advanced Online Voting System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/config_save.php. The manipulation of the argument title leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225940.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27653 ‼
📖 Read
via "National Vulnerability Database".
An issue found in WHOv.1.0.28, v.1.0.30, v.1.0.32 allows an attacker to cause a denial of service via the SharedPreference files.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2050 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in Campcodes Advanced Online Voting System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/positions_add.php. The manipulation of the argument description leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-225935.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2051 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability classified as critical has been found in Campcodes Advanced Online Voting System 1.0. Affected is an unknown function of the file /admin/positions_row.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-225936.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-2054 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability, which was classified as critical, was found in Campcodes Advanced Online Voting System 1.0. This affects an unknown part of the file /admin/positions_delete.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-225939.📖 Read
via "National Vulnerability Database".
🔥1
🕴 SASE Market Worth $5.9B by 2028 — Report by MarketsandMarkets™ 🕴
📖 Read
via "Dark Reading".
📖 Read
via "Dark Reading".
Dark Reading
SASE Market Worth $5.9B by 2028 — Report by MarketsandMarkets™
CHICAGO, April 14, 2023 /PRNewswire/ -- The global SASE Market size is projected to grow from USD 1.9 billion in 2023 to USD 5.9 billion by 2028, at a Compound Annual Growth Rate (CAGR) of 25.0% during the forecast period, according to a new report by Ma…
🛠Suricata IDPE 6.0.11 ðŸ›
📖 Read
via "Packet Storm Security".
Suricata is a network intrusion detection and prevention engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support. It's capable of loading existing Snort rules and signatures and supports the Barnyard and Barnyard2 tools.📖 Read
via "Packet Storm Security".
Packetstormsecurity
Suricata IDPE 6.0.11 ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
🛠I2P 2.2.1 ðŸ›
📖 Read
via "Packet Storm Security".
I2P is an anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.📖 Read
via "Packet Storm Security".
Packetstormsecurity
I2P 2.2.1 ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
‼ CVE-2023-29803 ‼
📖 Read
via "National Vulnerability Database".
TOTOLINK X18 V9.1.0cu.2024_B20220329 was discovered to contain a command injection vulnerability via the pid parameter in the disconnectVPN function.📖 Read
via "National Vulnerability Database".