CVE-2018-7720
Summary: A cross-site request forgery (CSRF) vulnerability exists in Western Bridge Cobub Razor 0.7.2 via /index.php?/user/createNewUser/, resulting in account creation....
Year: 2021
CVE-2014-5086
Summary: A Command Execution vulnerability exists in Sphider Pro, and Sphider Plus 3.2 due to insufficient sanitization of fwrite to...
CVE-2021-35221
Summary: Improper Access Control Tampering Vulnerability using ImportAlert function which can lead to a Remote Code Execution (RCE) from the...
CVE-2021-36068
Summary: Adobe Bridge version 11.1 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a...
Sextortion on the rise, warns FBI
The pandemic saw a surge in sextortion cases in 2020. Fast forward 12 months, and the numbers continue to rise...
Windows MSHTML zero-day actively exploited, mitigations required
Several researchers have independently reported a 0-day remote code execution vulnerability in MSHTML to Microsoft. The reason it was reported...
As Crypto Exchange Attacks Surge Users Must Protect Their Crypto Wallets
As cryptocurrency goes from being an academic concept to becoming a type of transaction that has the potential to significantly...
CBI Investigates Hacking Incident in Jee Maine Examination, Three Director Arrested
 CBI (Central Bureau of Investigation) is investigating the chances of a potential hack into TCS' iON digital platform related to...
Howard University Cancels Online and Hybrid Classes After Ransomware Attack
 Washington, D.C’s Howard University, one of the largest Black Schools in the United States, has canceled online and hybrid classes...
43% of all Malware Installations are Concealed in Microsoft Office Documents
 Companies have now employed hundreds of cloud applications to use due to the transition from work from the office to...
Berlin accused Russian hackers of preparing cyberattacks before the elections
Andrea Sasse, a spokesman for the German Foreign Ministry, said that German intelligence agencies are recording the growing activity of...
SharpStrike – A Post Exploitation Tool Written In C# Uses Either CIM Or WMI To Query Remote Systems
GUI version: Solution ArchitectureSharpStrike is composed of three main projects ServiceLayer -- Provides core functionality and consumed by the UI...
TREVORspray – A Featureful Round-Robin SOCKS Proxy And Python O365 Sprayer Based On MSOLSpray Which Uses The Microsoft Graph API
TREVORproxy is a SOCKS proxy that round-robins requests through SSH hosts. TREVORspray is a A featureful Python O365 sprayer based...
Russian communications watchdog Roskomnadzor blocks access to 6 VPNs
Russian communications watchdog Roskomnadzor tightens control of its citizens and blocked access to six virtual private networks (VPNs), including NordVPN...
Microsoft warns of a zero-day in Internet Explorer that is actively exploited
Microsoft warns of a zero-day vulnerability in Internet Explorer that is actively exploited by threat actors using weaponized Office docs....
Germany protests to Russia over attacks ahead of the upcoming election
Germany has protested to Russia over attempts to steal data from lawmakers and use them to spread disinformation ahead of...
REvil ransomware gang’s servers are mysteriously online again
The leak site of the popular REvil ransomware gang is it is not clear if the group resumed operations or...
Researcher published PoC exploit for Ghostscript zero-day
A researcher published the PoC exploit code for a Ghostscript zero-day vulnerability that could allow completely compromise a server. Security...
LockBit 2.0 Ransomware Victim: benner[.]com[.]br
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
CVE-2017-2630
Summary: A stack buffer overflow flaw was found in the Quick Emulator (QEMU) before 2.9 built with the Network Block...
CVE-2021-36370
Summary: An issue was discovered in Midnight Commander through 4.8.26. When establishing an SFTP connection, the fingerprint of the server...
CVE-2021-36691
Summary: libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image.cc jxl::PlaneBase::PlaneBase(). When encoding a malicous GIF file using...
CVE-2019-10086
Summary: In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker...
CVE-2021-21679
Summary: Jenkins Azure AD Plugin 179.vf6841393099e and earlier allows attackers to craft URLs that would bypass the CSRF protection of...
