Lucene search
K

258 matches found

ThreatPost
ThreatPost
added 2021/05/05 1:24 p.m.47 views

Feds Shut Down Fake COVID-19 Vaccine Phishing Website

Federal law enforcement in Maryland has shut down a fraudulent website targeting immigrant communities that claimed to be for a company developing a COVID-19 vaccine. Instead, the site was stealing information from people with the purpose of using it for future cybercriminal activity. The U.S...

6.8AI score
Exploits0References7
Akamai Blog
Akamai Blog
added 2021/04/28 4:0 a.m.15 views

Supporting Akamai Communities Impacted by COVID-19

While those of us in places like the U.S. are experiencing some relief with access to the COVID-19 vaccine, it has been heartbreaking to see surges in infection, hospitalization, and death across the globe, including the dire situation in India...

2.9AI score
Exploits0
OSV
OSV
added 2021/04/19 7:15 p.m.14 views

CVE-2021-29455

Grassroot Platform is an application to make it faster, cheaper and easier to persistently organize and mobilize people in low-income communities. Grassroot Platform before master deployment as of 2021-04-16 did not properly verify the signature of JSON Web Tokens when refreshing an existing JWT...

5.3CVSS6.7AI score0.00757EPSS
Exploits0References3
Fedora
Fedora
added 2021/03/23 1:34 a.m.39 views

[SECURITY] Fedora 33 Update: moodle-3.9.5-1.fc33

Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...

5.4CVSS1.9AI score0.01307EPSS
Exploits2
Openbugbounty
Openbugbounty
added 2020/10/26 1:13 p.m.8 views

pcamlvcommunities.com Cross Site Scripting vulnerability OBB-1451610

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/09/30 2:11 p.m.5 views

orkneycommunities.co.uk Cross Site Scripting vulnerability OBB-1374576

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/09/01 1:14 p.m.12 views

gardencommunitiesca.com Cross Site Scripting vulnerability OBB-1293533

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2020/08/31 11:0 a.m.26 views

How Cryptography Lets Down Marginalized Communities

Speaking at a prestigious crypto conference this month, Seny Kamara called on the field to recognize its blind spots—and fix them...

2.3AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/08/31 10:45 a.m.21 views

Seny Kamara on "Crypto for the People"

Seny Kamara gave an excellent keynote talk this year at the online CRYPTO Conference. He talked about solving real-world crypto problems for marginalized communities around the world, instead of crypto problems for governments and corporations. Well worth watching and listening to...

2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/08/31 5:45 a.m.11 views

Seny Kamara on "Crypto for the People"

Seny Kamara gave an excellent keynote talk this year at the online CRYPTO Conference. He talked about solving real-world crypto problems for marginalized communities around the world, instead of crypto problems for governments and corporations. Well worth watching and listening to...

2.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/08/31 5:45 a.m.7 views

Seny Kamara on "Crypto for the People"

Seny Kamara gave an excellent keynote talk this year at the online CRYPTO Conference. He talked about solving real-world crypto problems for marginalized communities around the world, instead of crypto problems for governments and corporations. Well worth watching and listening to...

2.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/06/28 8:51 a.m.9 views

empirecommunities.com Cross Site Scripting vulnerability OBB-1209264

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2020/05/29 8:23 p.m.43 views

Career Choice Tip: Cybercrime is Mostly Boring

When law enforcement agencies tout their latest cybercriminal arrest, the defendant is often cast as a bravado outlaw engaged in sophisticated, lucrative, even exciting activity. But new research suggests that as cybercrime has become dominated by pay-for-service offerings, the vast majority of...

7.1AI score
Exploits0
Fedora
Fedora
added 2020/05/20 3:48 a.m.41 views

[SECURITY] Fedora 30 Update: moodle-3.6.10-1.fc30

Moodle is a course management system CMS - a free, Open Source software package designed using sound pedagogical principles, to help educators crea te effective online learning communities...

8.8CVSS1.9AI score0.03083EPSS
Exploits0
Drupal
Drupal
added 2019/11/06 12:0 a.m.15 views

Open Social - Critical - Insecure Session Management - SA-CONTRIB-2019-075

Open Social is a Drupal distribution for online communities. The included socialmagiclogin module doesn't sufficiently validate magic login URLs for user accounts that do not have a local password, but login via external systems. The lack of validation makes it possible for an adversary to forge...

6.4AI score
Exploits0References8
CVE
CVE
added 2019/09/03 12:22 p.m.71 views

CVE-2019-15873

The WordPress plugin profilegrid-user-profiles-groups-and-communities (Profiles Grid) is vulnerable before version 2.8.6. The issue is remote code execution via wp-admin/admin-ajax.php using action=pm_template_preview&html=

8.8CVSS9.1AI score0.03883EPSS
Exploits2References2Affected Software1
Veracode
Veracode
added 2019/07/30 1:49 a.m.15 views

Cross-site Scripting (XSS)

invenio-communities is vulnerable to cross-site scripting XSS. The vulnerability exists through the lack of sanitization of community.description in about.html...

5.4CVSS1.7AI score0.00676EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/07/29 3:15 p.m.11 views

CVE-2019-1020005

invenio-communities before 1.0.0a20 allows XSS...

5.4CVSS5.5AI score
Exploits0References1
NVD
NVD
added 2019/07/29 3:15 p.m.24 views

CVE-2019-1020005

invenio-communities before 1.0.0a20 allows XSS...

5.4CVSS5.5AI score0.00676EPSS
Exploits0References1
PyPA
PyPA
added 2019/07/29 3:15 p.m.8 views

PYSEC-2019-25

invenio-communities before 1.0.0a20 allows XSS...

5.4CVSS7AI score0.00676EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder