EUVD-2024-45856

Malicious code in bioql PyPI...

EUVD-2024-52916

Malicious code in bioql PyPI...

CVE-2024-52351

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BU Web Team BU Slideshow bu-slideshow allows Stored XSS.This issue affects BU Slideshow: from n/a through = 2.3.10...

CVE-2024-56018

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BU Web Team BU Section Editing bu-section-editing allows Reflected XSS.This issue affects BU Section Editing: from n/a through = 0.9.9...

CVE-2024-56018

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BU Web Team BU Section Editing bu-section-editing allows Reflected XSS.This issue affects BU Section Editing: from n/a through = 0.9.9...

CVE-2024-56018 WordPress BU Section Editing Plugin <= 0.9.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Boston University IS&T BU Section Editing allows Reflected XSS.This issue affects BU Section Editing: from n/a through 0.9.9...

CVE-2024-56018 WordPress BU Section Editing Plugin <= 0.9.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BU Web Team BU Section Editing bu-section-editing allows Reflected XSS.This issue affects BU Section Editing: from n/a through = 0.9.9...

CVE-2024-52351

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BU Web Team BU Slideshow bu-slideshow allows Stored XSS.This issue affects BU Slideshow: from n/a through = 2.3.10...

CVE-2024-52351

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Boston University IS&T BU Slideshow allows Stored XSS.This issue affects BU Slideshow: from n/a through 2.3.10...

CVE-2024-52351 WordPress BU Slideshow plugin <= 2.3.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Boston University IS&T BU Slideshow allows Stored XSS.This issue affects BU Slideshow: from n/a through 2.3.10...

CVE-2024-52351

The CVE-2024-52351 entry concerns the WordPress BU Slideshow plugin (versions n/a through 2.3.10) with a Stored XSS caused by improper input neutralization during web page generation. Multiple connected sources confirm the affected component is the BU Slideshow plugin, and the underlying issue is...

CVE-2024-52351 WordPress BU Slideshow plugin <= 2.3.10 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in BU Web Team BU Slideshow bu-slideshow allows Stored XSS.This issue affects BU Slideshow: from n/a through = 2.3.10...

The Future is Female: A Key to the Cybersecurity Workforce Challenge

By 2022, 2 million cybersecurity positions globally are projected to be open, even as the threat landscape accelerates and becomes more complex. To meet this growing workforce shortage, women are a crucial, largely untapped reservoir of talent that businesses should be courting. In this Threatpos...

Important: Red Hat Security Advisory: ntp security update

Updated ntp packages that fix one security issue are now available for Red Hat Enterprise Linux 6.5 and 6.6 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Novel NTP Attacks Roll Back Time

Sharon Goldberg remembers the cold February day when her Boston University PhD candidate Aanchal Malhotra was studying routing security, in particular, attacks against the resource public key infrastructure RPKI—and kept hitting a dead end because of a cache-flushing issue. The resourceful Malhot...

Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015

Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service DoS condition or modify the time being advertised by a device acting as a...