CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on September 19, 2024. These...
Month: September 2024
CVE Alert: CVE-2024-9041
Vulnerability Summary: CVE-2024-9041 A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical....
CVE Alert: CVE-2024-9040
Vulnerability Summary: CVE-2024-9040 A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This...
CVE Alert: CVE-2024-45489
Vulnerability Summary: CVE-2024-45489 Arc before 2024-08-26 allows remote code execution in JavaScript boosts. Boosts that run JavaScript cannot be shared...
CVE Alert: CVE-2024-8612
Vulnerability Summary: CVE-2024-8612 A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for virtqueue_push...
CVE Alert: CVE-2024-42697
Vulnerability Summary: CVE-2024-42697 Cross Site Scripting vulnerability in Leotheme Leo Product Search Module v.2.1.6 and earlier allows a remote attacker...
CVE Alert: CVE-2024-42346
Vulnerability Summary: CVE-2024-42346 Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing...
CVE Alert: CVE-2024-42351
Vulnerability Summary: CVE-2024-42351 Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing...
CVE Alert: CVE-2024-45229
Vulnerability Summary: CVE-2024-45229 The Versa Director offers REST APIs for orchestration and management. By design, certain APIs, such as the...
CVE Alert: CVE-2024-47061
Vulnerability Summary: CVE-2024-47061 Plate is a javascript toolkit that makes it easier for you to develop with Slate, a popular...
CVE Alert: CVE-2024-46654
Vulnerability Summary: CVE-2024-46654 A stored cross-site scripting (XSS) vulnerability in the Add Scheduled Task module of Maccms10 v2024.1000.4040 allows attackers...
CVE Alert: CVE-2024-45793
Vulnerability Summary: CVE-2024-45793 Confidant is a open source secret management service that provides user-friendly storage and access to secrets. The...
HackerOne Bug Bounty Disclosure: dom-xss-in-tiktok-com-login-via-the-redirect-url-parameter-sh-yo
Company Name: TikTok Company HackerOne URL: https://hackerone.com/tiktok Submitted By:sh1yoLink to Submitters Profile:https://hackerone.com/sh1yo Report Title:DOM XSS in tiktokcom/login via the redirect_url...
Damn-Vulnerable-Drone – An Intentionally Vulnerable Drone Hacking Simulator Based On The Popular ArduPilot/MAVLink Architecture, Providing A Realistic Environment For Hands-On Drone Hacking
The Damn Vulnerable Drone is an intentionally vulnerable drone hacking simulator based on the popular ArduPilot/MAVLink architecture, providing a realistic...
File-Unpumper – Tool That Can Be Used To Trim Useless Things From A PE File Such As The Things A File Pumper Would Add
file-unpumper is a powerful command-line utility designed to clean and analyze Portable Executable (PE) files. It provides a range of...
CISA: New CISA Plan Aligns Federal Agencies in Cyber Defense
New CISA Plan Aligns Federal Agencies in Cyber Defense Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the Federal...
CISA: CISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting Vulnerabilities
CISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting Vulnerabilities Today, CISA and FBI released a Secure...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on September 17, 2024. These...
CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog
CISA Adds Four Known Exploited Vulnerabilities to Catalog CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds Five Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog CISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: Apple Releases Security Updates for Multiple Products
Apple Releases Security Updates for Multiple Products Apple released security updates to address vulnerabilities in multiple Apple products. A cyber...
CISA: Ivanti Releases Admin Bypass Security Update for Cloud Services Appliance
Ivanti Releases Admin Bypass Security Update for Cloud Services Appliance Ivanti has released a security update to address an admin...
CISA: VMware Releases Security Advisory for VMware Cloud Foundation and vCenter Server
VMware Releases Security Advisory for VMware Cloud Foundation and vCenter Server VMware released a security advisory addressing vulnerabilities in the...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on September 19, 2024. These...
