CISA: VMware Releases Security Update for Tools
VMware Releases Security Update for Tools VMware has released a security update to address a vulnerability in VMware Tools. A...
Year: 2023
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on August 31, 2023. These...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on September 7, 2023. These...
CISA: CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack
CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack CISA has released actionable guidance for Federal Civilian...
CISA: CISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475
CISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475 Today, CISA, Federal Bureau of...
CISA: CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells
CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells The Cybersecurity and Infrastructure Security Agency (CISA) has...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco has released security advisories to address vulnerabilities affecting multiple Cisco products. A...
US-CERT Vulnerability Summary for the Week of August 28, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoearcms -- ear_appAn issue found in Earcms Ear App v.20181124 allows a...
Quick-Lookup-Ptrun – Quick Lookup Plugin For PowerToys Run (Wox)
This plugin for PowerToys Run allows you to quickly search for an IP address, domain name, hash or any other...
HackerOne Bug Bounty Disclosure: b-yelp-com-and-biz-yelp-com-ato-via-xss-cookie-bridge-b-lil-endian
Company Name: b'Yelp' Company HackerOne URL: https://hackerone.com/yelp Submitted By:b'lil_endian'Link to Submitters Profile:https://hackerone.com/b'lil_endian' Report Title:b'yelp.com and biz.yelp.com ATO via XSS +...
HackerOne Bug Bounty Disclosure: b-support-tickets-can-be-created-on-behalf-of-other-users-using-spoofed-email-bypass-of-b-as-patro
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'as_patro'Link to Submitters Profile:https://hackerone.com/b'as_patro' Report Title:b'Support Tickets can be created on behalf...
HackerOne Bug Bounty Disclosure: b-cve-apache-airflow-spark-provider-deserialization-vulnerability-rce-b-happyhacking
Company Name: b'Internet Bug Bounty' Company HackerOne URL: https://hackerone.com/ibb Submitted By:b'happyhacking123'Link to Submitters Profile:https://hackerone.com/b'happyhacking123' Report Title:b'CVE-2023-40195: Apache Airflow Spark Provider...
HackerOne Bug Bounty Disclosure: b-adobe-coldfusion-access-control-bypass-cve-at-b-mega
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'mega7'Link to Submitters Profile:https://hackerone.com/b'mega7' Report Title:b'Adobe ColdFusion - Access...
HackerOne Bug Bounty Disclosure: b-unauthorized-ticket-can-be-created-by-an-attacker-in-user-s-helpdesk-account-b-fanimalikhack
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'fanimalikhack'Link to Submitters Profile:https://hackerone.com/b'fanimalikhack' Report Title:b"Unauthorized Ticket can be created by an...
HackerOne Bug Bounty Disclosure: b-ldap-anonymous-login-enabled-in-b-shuvam
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'shuvam321'Link to Submitters Profile:https://hackerone.com/b'shuvam321' Report Title:b'LDAP Anonymous Login enabled...
HackerOne Bug Bounty Disclosure: b-sqlinject-at-b-kirs
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'kirs112'Link to Submitters Profile:https://hackerone.com/b'kirs112' Report Title:b'SqlInject at 'Report Link:https://hackerone.com/reports/2073717Date...
HackerOne Bug Bounty Disclosure: b-blind-sql-injection-in-https-b-hackdog-ne
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'hackdog0ne'Link to Submitters Profile:https://hackerone.com/b'hackdog0ne' Report Title:b'Blind Sql Injection in...
HackerOne Bug Bounty Disclosure: b-blind-sql-injection-in-https-qssearch-aspx-b-hackdog-ne
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'hackdog0ne'Link to Submitters Profile:https://hackerone.com/b'hackdog0ne' Report Title:b'Blind Sql Injection in...
HackerOne Bug Bounty Disclosure: b-cve-xss-on-https-b-xmaruf
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'0xmaruf'Link to Submitters Profile:https://hackerone.com/b'0xmaruf' Report Title:b'CVE-2023-24488 xss on https:///'Report...
HackerOne Bug Bounty Disclosure: b-stored-cross-site-scripting-in-https-edu-b-maskedpersian
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'maskedpersian'Link to Submitters Profile:https://hackerone.com/b'maskedpersian' Report Title:b'stored cross site scripting...
HackerOne Bug Bounty Disclosure: b-xss-reflected-b-fklet
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'fklet'Link to Submitters Profile:https://hackerone.com/b'fklet' Report Title:b'XSS Reflected'Report Link:https://hackerone.com/reports/1892317Date Submitted:08...
Cisco Issues Urgent Fix for Authentication Bypass Bug Affecting BroadWorks Platform
Cisco has released security fixes to address multiple security flaws, including a critical bug, that could be exploited by a...
North Korean Hackers Exploit Zero-Day Bug to Target Cybersecurity Researchers
Threat actors associated with North Korea are continuing to target the cybersecurity community using a zero-day bug in unspecified software...
Protecting Your Microsoft IIS Servers Against Malware Attacks
Microsoft Internet Information Services (IIS) is a web server software package designed for Windows Server. Organizations commonly use Microsoft IIS...
