The 20th Anniversary of Wikipedia, 6 Open Source Security Resources.
#Updates
MORE DETAILS - https://undercodenews.com/the-20th-anniversary-of-wikipedia-6-open-source-security-resources/16/01/2021/
#Updates
MORE DETAILS - https://undercodenews.com/the-20th-anniversary-of-wikipedia-6-open-source-security-resources/16/01/2021/
Re-announced free trial period for Apple TV+ extended to July 2011.
#Updates #Technologies
MORE DETAILS - https://undercodenews.com/re-announced-free-trial-period-for-apple-tv-extended-to-july-2011/16/01/2021/
#Updates #Technologies
MORE DETAILS - https://undercodenews.com/re-announced-free-trial-period-for-apple-tv-extended-to-july-2011/16/01/2021/
🔵WPS office has a denial of service vulnerability:
https://dailycve.com/wps-office-has-denial-service-vulnerability
https://dailycve.com/wps-office-has-denial-service-vulnerability
Dailycve
WPS office has a denial of service vulnerability | CVE
Details:
WPS office is a Kingsoft released office app.
The WPS office has a service denial flaw that can be used by attackers to carry out service denial attacks.
Affected Versions:
WPS Office v11.1.0.10214
The Fix:
Wait for new release from:…
🔵Unpatched Jiajia 3GP format converter has dll hijacking vulnerability:
https://dailycve.com/unpatched-jiajia-3gp-format-converter-has-dll-hijacking-vulnerability
https://dailycve.com/unpatched-jiajia-3gp-format-converter-has-dll-hijacking-vulnerability
Dailycve
Unpatched Jiajia 3GP format converter has dll hijacking vulnerability | CVE
Details:
A professional and easy-to-operate 3GP handheld video format converter is the Jiajia 3GP format converter. Various common video formats (3GP, 3G2, 3GPP, MP4, AVI) can be converted easily by the Jiajia 3GP format converter.
The Jiajia 3GP format…
For clients to exert more power over their voice data, Microsoft offers new setting options.
#Updates
MORE DETAILS - https://undercodenews.com/for-clients-to-exert-more-power-over-their-voice-data-microsoft-offers-new-setting-options/16/01/2021/
#Updates
MORE DETAILS - https://undercodenews.com/for-clients-to-exert-more-power-over-their-voice-data-microsoft-offers-new-setting-options/16/01/2021/
Samsung Launches Earphone Protective Case Anycall Nostalgic Limited Edition.
#Technologies
MORE DETAILS - https://undercodenews.com/samsung-launches-earphone-protective-case-anycall-nostalgic-limited-edition/16/01/2021/
#Technologies
MORE DETAILS - https://undercodenews.com/samsung-launches-earphone-protective-case-anycall-nostalgic-limited-edition/16/01/2021/
🔵Unpatched UCMS system has code execution vulnerability:
https://dailycve.com/unpatched-ucms-system-has-code-execution-vulnerability
https://dailycve.com/unpatched-ucms-system-has-code-execution-vulnerability
Dailycve
Unpatched UCMS system has code execution vulnerability | CVE
Details:
UCMS is a framework for handling content written in the PHP language.
In the UCMS method, a code execution flaw occurs, which can be abused to execute malicious code by attackers.
Affected Version:
UCMS UCMS 1.5
The Fix:
Wait for…
🔵Foxmail (Windows client) has dll hijacking vulnerability:
https://dailycve.com/foxmail-windows-client-has-dll-hijacking-vulnerability
https://dailycve.com/foxmail-windows-client-has-dll-hijacking-vulnerability
Dailycve
Foxmail (Windows client) has dll hijacking vulnerability | CVE
Details:
Foxmail is a domestic e-mail client program that offers Internet standards-based functionality such as e-mail sending and receiving, digital signature and encryption, local mailbox mail search and anti-spam.
Foxmail (Windows Client) is vulnerable…
The first digital bank in Japan, everybody's bank opening in May, the "insane" of finance.
#International
MORE DETAILS - https://undercodenews.com/the-first-digital-bank-in-japan-everybodys-bank-opening-in-may-the-insane-of-finance/16/01/2021/
#International
MORE DETAILS - https://undercodenews.com/the-first-digital-bank-in-japan-everybodys-bank-opening-in-may-the-insane-of-finance/16/01/2021/
WINDTRE: scam that deprived the company of 21 million euros.
#CyberAttacks
MORE DETAILS - https://undercodenews.com/windtre-scam-that-deprived-the-company-of-21-million-euros/16/01/2021/
#CyberAttacks
MORE DETAILS - https://undercodenews.com/windtre-scam-that-deprived-the-company-of-21-million-euros/16/01/2021/
🔵Prestashop'id_product' SQL injection vulnerability (DC: 195-2021)
https://dailycve.com/prestashopidproduct-sql-injection-vulnerability
https://dailycve.com/prestashopidproduct-sql-injection-vulnerability
Dailycve
Prestashop'id_product' SQL injection vulnerability | CVE
Details:
PrestaShop is a free open source e-commerce solution, fully featured and cross-platform, built for web2.0.0.
SQL injection vulnerability of Prestashop'id product '. Vulnerabilities may be exploited by attackers to access personal information…
🔵Combodo iTop cross-site scripting vulnerability (DC- 194-2021):
https://dailycve.com/combodo-itop-cross-site-scripting-vulnerability
https://dailycve.com/combodo-itop-cross-site-scripting-vulnerability
Dailycve
Combodo iTop cross-site scripting vulnerability | CVE
Details:
Combodo iTop is free software for hardware, software and associated resources management.
Combodo iTop 2.7.2 and releases previous to 3.0.0 have bugs around cross-site scripting. This vulnerability can be abused by attackers to execute cross…
It's not possible to charge MacBook Pro, netizens collectively fry pot, Apple responds: device issue.
#Bugs
MORE DETAILS - https://undercodenews.com/its-not-possible-to-charge-macbook-pro-netizens-collectively-fry-pot-apple-responds-device-issue/16/01/2021/
#Bugs
MORE DETAILS - https://undercodenews.com/its-not-possible-to-charge-macbook-pro-netizens-collectively-fry-pot-apple-responds-device-issue/16/01/2021/
Microsoft patches odd defects in the successful execution of malware in Windows Defender.
#Vulnerabilities
MORE DETAILS - https://undercodenews.com/microsoft-patches-odd-defects-in-the-successful-execution-of-malware-in-windows-defender/16/01/2021/
#Vulnerabilities
MORE DETAILS - https://undercodenews.com/microsoft-patches-odd-defects-in-the-successful-execution-of-malware-in-windows-defender/16/01/2021/
🔵Nagios XI remote code execution vulnerability:
https://dailycve.com/nagios-xi-remote-code-execution-vulnerability
https://dailycve.com/nagios-xi-remote-code-execution-vulnerability
Dailycve
Nagios XI remote code execution vulnerability | CVE
Details:
Nagios XI, including dashboards, web-based setup, advanced reporting and rich data visualization, is a market monitoring solution built on Nagios Core.
The "Manage Plug-in" page in Nagios XI 5.8.0 or earlier has a remote code execution flaw.…
🔵IBM Security Guardium Insights Information Disclosure Vulnerability:
https://dailycve.com/ibm-security-guardium-insights-information-disclosure-vulnerability
https://dailycve.com/ibm-security-guardium-insights-information-disclosure-vulnerability
Dailycve
IBM Security Guardium Insights Information Disclosure Vulnerability | CVE
Details:
IBM Security Guardium Insights is a digital data security hybrid cloud center developed to offer a reliable view of the data security and enforcement status of an enterprise.
IBM Encryption Guardium Insights 2.0.2 has a flaw in privacy disclosure.…
The Russian authorities want licenses to be enforced for calls via Skype, Viber, WhatsApp
#International
MORE DETAILS - https://undercodenews.com/the-russian-authorities-want-licenses-to-be-enforced-for-calls-via-skype-viber-whatsapp/16/01/2021/
#International
MORE DETAILS - https://undercodenews.com/the-russian-authorities-want-licenses-to-be-enforced-for-calls-via-skype-viber-whatsapp/16/01/2021/
In the US, Xiaomi has fallen out of favour. Now, along with Huawei, she is on the "black list"
#Technologies
MORE DETAILS - https://undercodenews.com/in-the-us-xiaomi-has-fallen-out-of-favour-now-along-with-huawei-she-is-on-the-black-list/16/01/2021/
#Technologies
MORE DETAILS - https://undercodenews.com/in-the-us-xiaomi-has-fallen-out-of-favour-now-along-with-huawei-she-is-on-the-black-list/16/01/2021/
🔵Unpatched weak password vulnerability exists in the firewall gateway management system:
https://dailycve.com/unpatched-weak-password-vulnerability-exists-firewall-gateway-management-system
https://dailycve.com/unpatched-weak-password-vulnerability-exists-firewall-gateway-management-system
Dailycve
Unpatched weak password vulnerability exists in the firewall gateway management system | CVE
Details:
Youyou is a registered trademark of Shenzhen Hechen Technology Communication Co., Ltd. In 1998, the company was founded. Mailgard Youyou series mail server, mail archive, spam filtering gateway, mail gateway, global mail gateway, gateway for…
🔵Unpatched Information disclosure vulnerability exists in DedeCMSV6:
https://dailycve.com/unpatched-information-disclosure-vulnerability-exists-dedecmsv6
https://dailycve.com/unpatched-information-disclosure-vulnerability-exists-dedecmsv6
Dailycve
Unpatched Information disclosure vulnerability exists in DedeCMSV6 | CVE
Details:
DedeCMSV6 is developed based on PHP7.x, is extensible, and is completely open source.
DedeCMSV6 has an information disclosure vulnerability. Attackers can use vulnerabilities to obtain sensitive information
Affected Version:
DEDECMSV6 6.0.2…