NAME__________Koha Library Software SQL injectionPlatforms Affected:Koha Koha Library Software 23.05.04Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Koha Library Software is vulnerable to SQL injection....
NAME__________Apache Airflow information disclosurePlatforms Affected:Apache Airflow 2.7.1Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Airflow could allow a remote authenticated attacker to obtain sensitive...
NAME__________Apache Airflow security bypassPlatforms Affected:Apache Airflow 2.7.1Risk Level:6.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Apache Airflow could allow a remote authenticated attacker to bypass security...
NAME__________LeadSquared Suite Plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress LeadSquared Suite Plugin for WordPress 0.7.4Risk Level:7.1Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________LeadSquared Suite Plugin...
NAME__________Advantech WebAccess information disclosurePlatforms Affected:Advantech WebAccess 9.1.3Risk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Advantech WebAccess could allow a remote attacker to obtain sensitive information,...
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Cybercriminals are employing a novel code distribution technique dubbed 'EtherHiding,' which abuses Binance's Smart Chain (BSC) contracts to hide malicious...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has unveiled additional details regarding misconfigurations and security vulnerabilities exploited by ransomware...
Microsoft announced earlier this week that the NTLM authentication protocol will be killed off in Windows 11 in the future. NTLM (short for...
Genetic testing provider 23andMe faces multiple class action lawsuits in the U.S. following a large-scale data breach that is believed...
Ransomware gangs continue to pummel the enterprise, with attacks causing disruption in business operations and resulting in data breaches if...
There were 2116 reported US data breaches and leaks in the first nine months of 2023, making it the worst...
Law enforcers from 26 countries came together recently in a hackathon designed to enhance intelligence gathering on human trafficking gangs,...
The UK’s cybersecurity professionals believe they have excellent career prospects and are employed in a “booming” sector, but many are...
A new malicious espionage campaign is targeting telecommunications organizations and governments across Central and Southeast Asia, CheckPoint Research has discovered.The...
Cybersecurity has become a top concern for small and medium enterprises (SMEs) and nearly half (48%) of SMEs have experienced...
A new vulnerability in the User Submitted Posts WordPress plugin (versions 20230902 and below) has been discovered by the Patchstack...
The UK’s financial regulator has fined Equifax Ltd. over £11m ($13.4m) for failing to protect UK consumer data stolen in...
California Governor Gavin Newsom has signed into law the first bill in the US compelling data brokers to delete all...
Email security provider Cofense has discovered a new phishing campaign comprising over 800 emails and using LinkedIn Smart Links.The campaign...
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoacronis -- agentLocal privilege escalation due to improper soft link handling. The...
This is an alpha release of an assemblies.blob AssemblyStore parser written in Python. The tool is capable of unpack and...
