CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2024/11/03 1:0 p.m.•14 views

CVE-2024-10734 Project Worlds Life Insurance Management System editPayment.php sql injection

6.5CVSS0.00096EPSS

CNNVD•added 2024/11/03 12:0 a.m.•2 views

Project Worlds Life Insurance Management System SQL注入漏洞

Project Worlds Life Insurance Management System is a life insurance management system from Project Worlds, Inc. A SQL injection vulnerability exists in Project Worlds Life Insurance Management System version 1.0, which stems from the fact that incorrect manipulation of the parameter nomineeid can...

9.8CVSS7.1AI score0.00096EPSS

CNNVD•added 2024/11/03 12:0 a.m.•1 views

Project Worlds Life Insurance Management System 安全漏洞

Project Worlds Life Insurance Management System is a life insurance management system from Project Worlds, Inc. A security vulnerability exists in Project Worlds Life Insurance Management System version 1.0, which stems from an incorrect manipulation of the parameter reciptno that can lead to SQL...

9.8CVSS6.9AI score0.00096EPSS

Krebs on Security•added 2024/10/30 1:34 p.m.•7 views

Change Healthcare Breach Hits 100M Americans

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Image: Tamer Tuncay,...

7.5AI score

Malwarebytes•added 2024/10/14 7:10 a.m.•5 views

A week in security (October 7 – October 13)

Last week on Malwarebytes Labs: Modern TVs have "unprecedented capabilities for surveillance and manipulation," group reveals Internet Archive suffers data breach and DDoS Google Search user interface: A/B testing shows security concerns remain AI girlfriend site breached, user fantasies stolen...

7.2AI score

The Hacker News•added 2024/10/11 5:13 p.m.•19 views

GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks

A new tax-themed malware campaign targeting insurance and finance sectors has been observed leveraging GitHub links in phishing email messages as a way to bypass security measures and deliver Remcos RAT, indicating that the method is gaining traction among threat actors. "In this campaign,...

7AI score

The Hacker News•added 2024/09/09 12:24 p.m.•18 views

Blind Eagle Targets Colombian Insurance Sector with Customized Quasar RAT

The Colombian insurance sector is the target of a threat actor tracked as Blind Eagle with the end goal of delivering a customized version of a known commodity remote access trojan RAT referred to as Quasar RAT since June 2024. "Attacks have originated with phishing emails impersonating the...

7AI score

Malwarebytes•added 2024/09/05 3:31 p.m.•14 views

Planned Parenthood partly offline after ransomware attack

In late August, Intermountain Planned Parenthood of Montana suffered a cyberattack which is still under investigation. The attack has been claimed by a ransomware group. Intermountain Planned Parenthood Inc., doing business as Planned Parenthood Of Montana, is a nonprofit organization that provid...

7.3AI score

OSV•added 2024/09/04 5:15 p.m.•2 views

CVE-2024-8414

A vulnerability has been found in SourceCodester Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to...

4.3CVSS4.7AI score0.00149EPSS

NVD•added 2024/09/04 5:15 p.m.•10 views

CVE-2024-8414

6.9CVSS0.00149EPSS

Vulnrichment•added 2024/09/04 4:31 p.m.•16 views

CVE-2024-8414 SourceCodester Insurance Management System cross-site request forgery

6.9CVSS7AI score0.00149EPSS

Cvelist•added 2024/09/04 4:31 p.m.•16 views

CVE-2024-8414 SourceCodester Insurance Management System cross-site request forgery

6.9CVSS0.00149EPSS