NAME__________PaulPrinting CMS /account/delivery cross-site scriptingPlatforms Affected:CodePaul PaulPrinting CMSRisk Level:5.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________PaulPrinting CMS is vulnerable to cross-site scripting, caused by improper...
NAME__________Mozilla Thunderbird spoofingPlatforms Affected:Mozilla Thunderbird 115.0Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Mozilla Thunderbird could allow a remote attacker to conduct spoofing attacks. By...
NAME__________IBM Cognos Analytics cross-site scriptingPlatforms Affected:IBM Cognos Analytics 11.1 IBM Cognos Analytics 11.2Risk Level:4.6Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________IBM Cognos Analytics 11.1 and...
NAME__________GMOD GBrowse file uploadPlatforms Affected:GMOD GBrowse 1.70 GMOD GBrowse 2.55Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________GMOD GBrowse could allow a remote attacker to...
NAME__________Micro Focus products information disclosurePlatforms Affected:Micro Focus Enterprise Server 6.0 Micro Focus Enterprise Test Server 6.0 Micro Focus Enterprise Developer...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2021-20323A POST based reflected Cross Site Scripting vulnerability on has been identified...
The Clop ransomware gang is expected to earn between $75-100 million from extorting victims of their massive MOVEit data theft...
The Microsoft private encryption key stolen by Storm-0558 Chinese hackers provided them with access far beyond the Exchange Online and...
This edition of the Week in Ransomware covers the last two weeks of news, as we could not cover it...
VirusTotal apologized on Friday for leaking the information of over 5,600 customers after an employee mistakenly uploaded a CSV file...
The US government is warning that threat actors breached the network of a U.S. organization in the critical infrastructure sector...
Ransomware attacks in June soared 221% year-on-year to hit a record 434 for the month, according to an analysis from...
GitHub has warned of a new North Korean threat campaign designed to compromise victims via malicious npm package dependencies.The development...
The US Department of Justice (DoJ) is doubling the size of the team investigating cryptocurrency crime, with the fight against...
Generative AI tools have conquered the workplace, especially large language model-based (LLM) chatbots like OpenAI’s ChatGPT and Google’s Bard.These powerful...
The Russian state prosecution asked the Moscow City Court to impose 18 years in a strict colony regime on Ilya...
A Chinese cyber-espionage campaign revealed by Microsoft last week compromised the government email account of the US ambassador to China...
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on July 18, 2023. These...
Adobe Releases Security Updates for ColdFusion Adobe has released security updates to address a critical vulnerability (CVE-2023-38203) affecting ColdFusion(link is...
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for July...
Citrix Releases Security Updates for NetScaler ADC and Gateway Citrix has released security updates to address vulnerabilities (CVE-2023-3519, CVE-2023-3466, and...
Atlassian Releases Security Updates Atlassian has released its Security Bulletin for July 2023(link is external) to address vulnerabilities in Confluence Data...
CISA Releases Cybersecurity Advisory on Threat Actors Exploiting Citrix CVE-2023-3519 The Cybersecurity and Infrastructure Security Agency (CISA) released a Cybersecurity...
