goo blog App fails to restrict custom URL schemes properly

Overview goo blog App by NTT Resonant Incorporated provides the function to access a requested URL using Custom URL Scheme. The App does not restrict access to the function properly CWE-284 which may be exploited to direct the App to access any sites. Impact A remote attacker may lead a user to...

goo blog App 访问控制错误漏洞

goo blog App is a blog application. An Access Control Error vulnerability exists in goo blog App version 1.2.25, which is caused by improperly restricting access to the program, and can be exploited by a remote attacker to trick a victim into accessing an arbitrary web site via a vulnerable...

Security Vulnerability in Apple’s Silicon “M1” Chip

The website for the M1racles security vulnerability is an excellent demonstration that not all vulnerabilities are exploitable. Be sure to read the FAQ through to the end. EDITED TO ADD: Wired article...

Arbitrary file deletion vulnerability in emlog (CNVD-2021-41633)

emlog is short for every memory log, a PHP and MySQL based blog and CMS builder. There is an arbitrary file deletion vulnerability in emlog. An attacker can exploit this vulnerability to delete arbitrary files...

Friday Squid Blogging: Underwater Cameras for Observing Squid

Interesting research paper. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

5 Benefits of Network Segmentation

Learn more about how microsegmentation can enable you to achieve granular network segmentation, quickly and securely...

Exploit for Argument Injection in Dragonfly_Project Dragonfly

CVE-2021-33564 PoC Exploit script for CVE-2021-33564 Argument...

ThinkPHP Exploit Actively Exploited in the Wild

...

Cookie Law Bar <= 1.2.1 - Authenticated Stored Cross-Site Scripting (XSS)

The plugin does not properly sanitise its Bar Message setting, allowing high privilege users to set an XSS payload in it, which will be triggered in all frontend page of the blog. PoC As admin, go the plugin settings /wp-admin/options-general.php?page=clb and set a payload such as in the Bar...

Bludit File Upload Vulnerability

Bludit is an open source, lightweight blog content management system CMS. A file upload vulnerability exists in Bludit version 3.12.0, which originates from a file upload found in the file path bl-plugins backup plugin.php, and can be exploited by an attacker to gain administrator privileges and ...

How to Avoid Those Infuriating Cookie Pop-Ups

Cookie consent notices are everywhere, and opting out of tracking is a pain. It doesn’t have to be this way...

Goodbye Internet Explorer—and Good Riddance

Microsoft will finally put the venerated, vulnerability-ridden browser out to pasture, but it's still got a year to cause some trouble...

Friday Squid Blogging: Picking up Squid on the Beach

Make sure theyre dead. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

Halo cross-site scripting vulnerability (CNVD-2021-37280)

Halo is a modern blog/CMS system. A cross-site scripting vulnerability exists in Halo version 1.1.3. A remote attacker can exploit this vulnerability to execute arbitrary code via the blog publishing component...

Local directory executable lookup in sops (Windows-only)

Impact Windows users using the sops direct editor option sops file.yaml can have a local executable named either vi, vim, or nano executed if running sops from cmd.exe This attack is only viable if an attacker is able to place a malicious binary within the directory you are running sops from. As...

Threat Source newsletter (May 20, 2021)

Newsletter compiled by Jon Munshaw. Good afternoon, Talos readers. We know a lot of you may be tired of "content" after RSA week. But we have some more for you! And specifically related to RSA, Cisco Talos Incident Response has new case studies out detailing a few recent engagements... This is on...

Halo 跨站脚本漏洞

Halo is a modern blog/CMS system. A cross-site scripting vulnerability exists in Halo version 1.1.3. A remote attacker can exploit this vulnerability to execute arbitrary code via the blog publishing component...

Apple Censorship and Surveillance in China

Good investigative reporting on how Apple is participating in and assisting with Chinese censorship and surveillance...

emlog cross-site scripting vulnerability

emlog is a PHP and MySQL based blog and CMS builder. A cross-site scripting vulnerability exists in emlog version 6.0.0. The vulnerability can be exploited to execute arbitrary code by adding a specially crafted script as a link to a new blog post...

CVE-2020-18194

Cross Site Scripting XSS in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post...