βΌ CVE-2023-5782 βΌ
π Read
via "National Vulnerability Database".
A vulnerability, which was classified as critical, was found in Tongda OA 2017 up to 11.10. Affected is an unknown function of the file /manage/delete_query.php of the component General News. The manipulation of the argument NEWS_ID leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-243588. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.π Read
via "National Vulnerability Database".
βΌ CVE-2023-46238 βΌ
π Read
via "National Vulnerability Database".
ZITADEL is an identity infrastructure management system. ZITADEL users can upload their own avatar image using various image types including SVG. SVG can include scripts, such as javascript, which can be executed during rendering. Due to a missing security header, an attacker could inject code to an SVG to gain access to the victimΓ’β¬β’s account in certain scenarios. A victim would need to directly open the malicious image in the browser, where a single session in ZITADEL needs to be active for this exploit to work. If the possible victim had multiple or no active sessions in ZITADEL, the attack would not succeed. This issue has been patched in version 2.39.2 and 2.38.2.π Read
via "National Vulnerability Database".
βΌ CVE-2023-45868 βΌ
π Read
via "National Vulnerability Database".
The Learning Module in ILIAS 7.25 (2023-09-12 release) allows an attacker (with basic user privileges) to achieve a high-impact Directory Traversal attack on confidentiality and availability. By exploiting this network-based vulnerability, the attacker can move specified directories, normally outside the documentRoot, to a publicly accessible location via the PHP function rename(). This results in a total loss of confidentiality, exposing sensitive resources, and potentially denying access to the affected component and the operating system's components. To exploit this, an attacker must manipulate a POST request during the creation of an exercise unit, by modifying the old_name and new_name parameters via directory traversal. However, it's essential to note that, when exploiting this vulnerability, the specified directory will be relocated from its original location, rendering all files obtained from there unavailable.π Read
via "National Vulnerability Database".
βΌ CVE-2023-45867 βΌ
π Read
via "National Vulnerability Database".
ILIAS (2013-09-12 release) contains a medium-criticality Directory Traversal local file inclusion vulnerability in the ScormAicc module. An attacker with a privileged account, typically holding the tutor role, can exploit this to gain unauthorized access to and potentially retrieve confidential files stored on the web server. The attacker can access files that are readable by the web server user www-data; this may include sensitive configuration files and documents located outside the documentRoot. The vulnerability is exploited by an attacker who manipulates the file parameter in a URL, inserting directory traversal sequences in order to access unauthorized files. This manipulation allows the attacker to retrieve sensitive files, such as /etc/passwd, potentially compromising the system's security. This issue poses a significant risk to confidentiality and is remotely exploitable over the internet.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5785 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/firewall/addaddress_interpret.php. The manipulation of the argument messagecontent leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-243591. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.π Read
via "National Vulnerability Database".
βΌ CVE-2023-46090 βΌ
π Read
via "National Vulnerability Database".
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WebDorado WDSocialWidgets plugin <=Γ 1.0.15 versions.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41096 βΌ
π Read
via "National Vulnerability Database".
Missing Encryption of Security Keys vulnerability in Silicon Labs Ember ZNet SDK on 32 bit, ARM (SecureVault High modules) allows potential modification or extraction of network credentials stored in flash.This issue affects Silicon Labs Ember ZNet SDK: 7.3.1 and earlier.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41095 βΌ
π Read
via "National Vulnerability Database".
Missing Encryption of Security Keys vulnerability in Silicon Labs OpenThread SDK on 32 bit, ARM (SecureVault High modules) allows potential modification or extraction of network credentials stored in flash.This issue affects Silicon Labs OpenThread SDK: 2.3.1 and earlier.π Read
via "National Vulnerability Database".
π¦Ώ Everything You Need to Know About Microsoftβs New $5 Billion Investment in Australia π¦Ώ
π Read
via "Tech Republic".
Microsoft plans to more than double its cloud computing capacity in Australia over the next two years and expand its support for critical national cyber security and technology skills priorities.π Read
via "Tech Republic".
TechRepublic
Everything You Need to Know About Microsoftβs $5 Billion Investment in Australia
Microsoft will more than double its cloud computing capacity in Australia and expand support for national cyber security and tech skills.
π΄ Longer Support Periods Raise the Bar for Mobile Security π΄
π Read
via "Dark Reading".
With Google's announcement of seven years of support, other smartphone makers risk falling behind.π Read
via "Dark Reading".
Dark Reading
Longer Support Periods Raise the Bar for Mobile Security
With Google's announcement of seven years of support, other smartphone makers risk falling behind.
βΌ CVE-2023-45317 βΌ
π Read
via "National Vulnerability Database".
The application interface allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious web site.π Read
via "National Vulnerability Database".
βΌ CVE-2023-41966 βΌ
π Read
via "National Vulnerability Database".
The application suffers from a privilege escalation vulnerability. A user with read permissions can elevate privileges by sending a HTTP POST to set a parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5787 βΌ
π Read
via "National Vulnerability Database".
A vulnerability was found in Shaanxi Chanming Education Technology Score Query System 5.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument stuIdCard leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-243593 was assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-43208 βΌ
π Read
via "National Vulnerability Database".
NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote code execution. This is a bypass of the patch put in for CVE-2023-37679.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5624 βΌ
π Read
via "National Vulnerability Database".
Under certain conditions, Nessus Network Monitor was found to not properly enforce input validation. This could allow an admin user to alter parameters that could potentially allow a blindSQL injection.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5623 βΌ
π Read
via "National Vulnerability Database".
NNM failed to properly set ACLs on its installation directory, which could allow a low privileged user to run arbitrary code with SYSTEM privileges where NNM is installed to a non-standard locationπ Read
via "National Vulnerability Database".
βΌ CVE-2023-46666 βΌ
π Read
via "National Vulnerability Database".
An issue was discovered when using Document Level Security and the SPO "Limited Access" functionality in Elastic Sharepoint Online Python Connector. If a user is assigned limited access permissions to an item on a Sharepoint site then that user would have read permissions to all content on the Sharepoint site through Elasticsearch.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5791 βΌ
π Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, was found in SourceCodester Sticky Notes App 1.0. This affects an unknown part of the file endpoint/add-note.php. The manipulation of the argument noteTitle/noteContent leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-243597 was assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5792 βΌ
π Read
via "National Vulnerability Database".
A vulnerability has been found in SourceCodester Sticky Notes App 1.0 and classified as critical. This vulnerability affects unknown code of the file endpoint/delete-note.php. The manipulation of the argument note leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-243598 is the identifier assigned to this vulnerability.π Read
via "National Vulnerability Database".
βΌ CVE-2023-42769 βΌ
π Read
via "National Vulnerability Database".
The cookie session ID is of insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session, bypass authentication, and manipulate the transmitter.π Read
via "National Vulnerability Database".
βΌ CVE-2023-5622 βΌ
π Read
via "National Vulnerability Database".
Under certain conditions, Nessus Network Monitor could allow a low privileged user to escalate privileges to NT AUTHORITY\SYSTEM on Windows hosts by replacing a specially crafted file.π Read
via "National Vulnerability Database".