Lucene search
K

8 matches found

OSV
OSV
added 2025/01/28 7:15 p.m.8 views

GHSA-HJ78-P4H7-M5FV TYPO3-EXT-SA-2025-001: Account Takeover in extension "OpenID Connect Authentication" (oidc)

Problem Description A vulnerability in the account linking logic of the extension allows a pre-hijacking attack leading to Account Takeover. The attack can only be exploited if the following requirements are met: - An attacker can anticipate the email address of the user. - An attacker can regist...

4.2CVSS6.3AI score0.00168EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/01/28 7:15 p.m.14 views

TYPO3-EXT-SA-2025-001: Account Takeover in extension "OpenID Connect Authentication" (oidc)

Problem Description A vulnerability in the account linking logic of the extension allows a pre-hijacking attack leading to Account Takeover. The attack can only be exploited if the following requirements are met: - An attacker can anticipate the email address of the user. - An attacker can regist...

4.2CVSS6.9AI score0.00168EPSS
Exploits0References5Affected Software1
Trellix
Trellix
added 2023/08/05 12:0 a.m.10 views

Resilient Security Requires Mature Cyber Threat Intelligence Capabilities

Resilient Security Requires Mature Cyber Threat Intelligence Capabilities By Trellix Advanced Research Center · August 5, 2023 Threat intelligence and the ability to add context to each technology environment to global threats has never been more important to the role of the CISO, or to the board...

7.4AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/05/11 12:0 a.m.9 views

Diversification drives success

Trend’s diversification of business units and geographic markets provides resilience that enables growth, anticipation and innovation...

7.1AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2023/05/11 12:0 a.m.12 views

SaaS Drove Trend’s 20% Q1 2023 Year-Over-Year Growth

Trend’s diversification of business units and geographic markets provides resilience that enables growth, anticipation and innovation...

7.1AI score
Exploits0
Prion
Prion
added 2022/06/02 2:15 p.m.21 views

Code injection

CVEProject/cve-services is an open source project used to operate the CVE services API. A conditional in 'data.js' has potential for production secrets to be written to disk. The affected method writes the generated randomKey to disk if the environment is not development. If this method were call...

5CVSS7.6AI score0.00916EPSS
Exploits1References2Affected Software1
Wired Threat Level
Wired Threat Level
added 2021/09/28 11:0 a.m.20 views

Dune Foresaw—and Influenced—Half a Century of Global Conflict

From Afghanistan to cyberattacks, Frank Herbert’s novel anticipated and shaped warfare as we know it...

2.2AI score
Exploits0
Akamai Blog
Akamai Blog
added 2018/02/19 4:42 p.m.17 views

Passing the Online Torch from Rio to PyeongChang

Lighting the flame marks the beginning of PyeongChang, commemorating the ancient Greek myth of Prometheus stealing fire from Zeus, and connecting the games to its predecessors. The lighting ceremony has provided some of the most iconic moments, such as Muhammad Ali lighting the flame in Atlanta i...

6.9AI score
Exploits0
Rows per page
Query Builder