LinkedIn: CSRF that makes any user send invitations to the attacker by simply clicking on a link.

A CSRF vulnerability was found that allowed sending connection invitations without confirmation when a user clicked on a link...

Tiempo.com <= 0.1.2 - Shortcode Deletion via CSRF

The plugin does not have CSRF check when deleting its shortcode, which could allow attackers to make logged in admins delete arbitrary shortcode via a CSRF attack PoC Make a logged in admin open the URL below, this will make them delete the shortcode with ID 1...

Nextcloud 安全漏洞

Nextcloud is an open source suite of self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server that stems from an unrestricted ability to validate passwords for shared links. An attacker could use...

Hackers Exploit Outdated WordPress Plugin to Backdoor Thousands of WordPress Sites

Threat actors have been observed leveraging a legitimate but outdated WordPress plugin to surreptitiously backdoor websites as part of an ongoing campaign, Sucuri revealed in a report published last week. The plugin in question is Eval PHP, released by a developer named flashpixx. It allows users...

Arconix Shortcodes <= 2.1.7 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2023-2226

The CVE-2023-2226 issue affects Velociraptor (Rapid7 Velociraptor) prior to version 0.6.8. Root cause: insufficient validation in the PE and OLE parsers, allowing a specially crafted malicious file to cause the Velociraptor service to crash during artifact parsing. Impact: DoS via crash with the ...

Stored Cross-Site Scripting (XSS)

phpmyfaq is vulnerable to Stored Cross-Site Scripting XSS attacks. The vulnerability is due to a lack of sanitization in the FAQ news email field in comments, allowing an attacker to inject and execute malicious JavaScript in the victim's browser...

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65516)

Oracle MySQL Server is a relational database from Oracle Corporation. A security vulnerability exists in Oracle MySQL Server, which can be exploited by attackers to cause unauthorized MySQL Server hangs or frequent repeated crashes...

Schneider Electric EcoStruxure Control Expert Denial of Service Vulnerability

Schneider Electric EcoStruxure Control Expert is a suite of programming software for Schneider Electric logic controller products from Schneider Electric, France. A denial of service vulnerability exists in Schneider Electric EcoStruxure Control Expert V15.1 and prior versions, which stems from...

Schneider Electric Easergy Builder Code Issue Vulnerability

Schneider Electric Easergy Builder is a set of configuration software for Easergy remote terminal units and controllers from Schneider Electric, France. A code issue vulnerability exists in Schneider Electric Easergy Builder version 1.7.23 and earlier, which stems from the presence of an...

Live Chat by Formilla < 1.3.1 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

Juniper Junos OS Vulnerability (JSA70586)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA70586 advisory. - An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the ACX Series devices will prevent a firewal...

CVE-2023-27495

@fastify/csrf-protection is a plugin which helps protect Fastify servers against CSRF attacks. The CSRF protection enforced by the @fastify/csrf-protection library in combination with @fastify/cookie can be bypassed from network and same-site attackers under certain conditions...

Bypass of CSRF protection in the presence of predictable userInfo

Description The CSRF protection enforced by the @fastify/csrf-protection library in combination with @fastify/cookie can be bypassed from network and same-site attackers under certain conditions. @fastify/csrf-protection supports an optional userInfo parameter that binds the CSRF token to the use...

GHSA-QRGF-9GPC-VRXW Bypass of CSRF protection in the presence of predictable userInfo

Description The CSRF protection enforced by the @fastify/csrf-protection library in combination with @fastify/cookie can be bypassed from network and same-site attackers under certain conditions. @fastify/csrf-protection supports an optional userInfo parameter that binds the CSRF token to the use...

Cross-site Scripting (XSS)

libraylib.so is vulnerable to Cross-site Scripting XSS. The vulnerability exists in rcore.c because the SetClipboardText API does not properly escape the ' character which allows an attacker to inject and execute arbitrary JavaScript...

CVE-2022-36788

A heap-based buffer overflow vulnerability exists in the TriangleMesh clone functionality of Slic3r libslic3r 1.3.0 and Master Commit b1a5500. A specially-crafted STL file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2023-30797

Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. The insufficiently random values may allow an attacker to guess the credentials and gain access to resources managed by Lemur...

BlackCat (ALPHV) Gang Claims Ransomware Attack on NCR Data Center

By Deeba Ahmed BlackCat ransomware initially claimed responsibility for the ransomware attack on its dark web blog but later removed its post, indicating negotiations between the two parties. This is a post from HackRead.com Read the original post: BlackCat ALPHV Gang Claims Ransomware Attack on...

Uji Popup <= 1.4.3 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...