CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS
Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...
Year: 2023
US-CERT Vulnerability Summary for the Week of August 14, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infofoldingathome -- client_advanced_controlAn issue was discovered in FoldingAtHome Client Advanced Control GUI...
MSSqlPwner – An Advanced And Versatile Pentesting Tool Designed To Seamlessly Interact With MSSQL Servers And Based On Impacket
MSSqlPwner is an advanced and versatile pentesting tool designed to seamlessly interact with MSSQL servers and based on Impacket. The...
HackerOne Bug Bounty Disclosure: b-insecure-storage-of-information-you-can-view-any-file-uploaded-to-the-server-without-authentication-and-only-with-a-single-link-b-h
Company Name: b'Radancy' Company HackerOne URL: https://hackerone.com/radancy Submitted By:b'h03'Link to Submitters Profile:https://hackerone.com/b'h03' Report Title:b'insecure storage of information, you can view...
How to Investigate an OAuth Grant for Suspicious Activity or Overly Permissive Scopes
From a user's perspective, OAuth works like magic. In just a few keystrokes, you can whisk through the account creation...
HiatusRAT Malware Resurfaces: Taiwan Firms and U.S. Military Under Attack
The threat actors behind the HiatusRAT malware have returned from their hiatus with a new wave of reconnaissance and targeting...
This Malware Turned Thousands of Hacked Windows and macOS PCs into Proxy Servers
Threat actors are leveraging access to malware-infected Windows and macOS machines to deliver a proxy server application and use them...
CISA: CISA Releases Twelve Industrial Control Systems Advisories
CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on August 10, 2023. These...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 8, 2023. These...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 15, 2023. These...
CISA: CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan
CISA Releases JCDC Remote Monitoring and Management (RMM) Cyber Defense Plan Today, CISA released the Remote Monitoring and Management (RMM)...
CISA: Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS
Juniper Releases Security Advisory for Multiple Vulnerabilities in Junos OS Juniper has released a security advisory to address vulnerabilities in...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog,...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on August 17, 2023. These...
CISA: Atlassian Releases Security Update for Confluence Server and Data Center
Atlassian Releases Security Update for Confluence Server and Data Center Atlassian has released its security bulletin for August 2023 to...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco has released security advisories for vulnerabilities affecting multiple Cisco products. A cyber...
E-Fun CMS information disclosure |
NAME__________E-Fun CMS information disclosurePlatforms Affected:E-Fun CMS E-Fun CMS 5.0Risk Level:4.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________E-Fun CMS could allow a remote authenticated attacker to...
eLitius information disclosure |
NAME__________eLitius information disclosurePlatforms Affected:elitius elitius 1.0Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________eLitius could allow a remote attacker to obtain sensitive information. By sending...
Parsec Loader privilege escalation | US-CERT VU#287122
NAME__________Parsec Loader privilege escalationPlatforms Affected:Parsec Parsec Loader 7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Parsec Loader could allow a local authenticated attacker to gain...
North Grid Proself information disclosure | CVE-2023-39415
NAME__________North Grid Proself information disclosurePlatforms Affected:North Grid Proself Enterprise/Standard Edition 5.61 North Grid Proself Gateway Edition 1.62 North Grid Proself...
AcyMailing extension for Joomla! information disclosure | CVE-2023-39974
NAME__________AcyMailing extension for Joomla! information disclosurePlatforms Affected:AcyMailing AcyMailing extension for Joomla! 6.7.0 AcyMailing AcyMailing extension for Joomla! 8.6.3 AcyMailing AcyMailing...
AcyMailing extension for Joomla! security bypass | CVE-2023-39972
NAME__________AcyMailing extension for Joomla! security bypassPlatforms Affected:AcyMailing AcyMailing extension for Joomla! 6.7.0 AcyMailing AcyMailing extension for Joomla! 8.6.3 AcyMailing AcyMailing...
Cisco P Phone 6800, 7800, and 8800 Series cross-site request forgery | CVE-2023-20237
NAME__________Cisco P Phone 6800, 7800, and 8800 Series cross-site request forgeryPlatforms Affected:Cisco IP Phone 6800 Series Phones with Multiplatform Firmware...
