76 matches found
Hackers infect authentic 2FA app to infect Mac devices with malware
By Sudais Asif It is believed that an infamous group is behind this malware. This is a post from HackRead.com Read the original post: Hackers infect authentic 2FA app to infect Mac devices with malware...
Centreon 19.10.5 Pollers Remote Command Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Centreon Poller Authenticated Remote Command Execution', 'Description' = %q TODO , 'Author' = 'Omri Baso', discovery 'Fabien Aunay', discovery...
RecScanSec - Reconnaisance Scanner Security
RecScanSec made for reconnaisance Scanner and information gathering with an emphasis on simplicity. It will do everything from. Features Information Security Headers WAF Analyzer Information Disclosure Banner Grabbing Url Crawl HTML Form Detector Port Scanner Get SSL Information Subdomain...
ReconT - Reconnaisance / Footprinting / Information Disclosure
Recon-Tool made for reconnaissance and information gathering with an emphasis on simplicity. It will do everything from. Features Information Security Headers WAF Detector Banner Grabbing Phone Number Credit Card Number Email US Social Security Number Url Crawl Dom Paramter Url Internal Dynamic...
PT-2019-16739 · Prometheus +1 · Prometheus +1
Name of the Vulnerable Software and Affected Versions: Prometheus versions prior to 2.7.1 Description: A stored, DOM based, cross-site scripting XSS flaw was found. An attacker could exploit this by convincing an authenticated user to visit a crafted URL on a Prometheus server, allowing for the...
8 Ways to Avoid the Cybersecurity Grinch This Holiday Season
'Tis the season to be jolly…unless you work in cybersecurity. According to the Carbon Black Threat Analysis Unit TAU, organizations should expect to see a spike in potential cyberattacks starting with Black Friday/Cyber Monday and continuing through the holiday shopping season. TAU’s analysis...
CVE-2017-2334
An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...
CVE-2017-2334
An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted,...
Updated webmin package fixes security vulnerability
The webmin package has been updated to version 1.831, fixing possible security issues in the Authentic theme fixed in 1.801 and/or 1.810, and containing several other bug fixes and enhancements. See the upstream release announcements and change log for details...
Authentic Theme - Arbitrary File Download
The authentic WordPress theme was affected by an Arbitrary File Download security vulnerability...
WordPress Authentic Arbitrary File Download Vulnerability
WordPress Authentic theme suffers from an arbitrary file download vulnerability. Note that this finding houses site-specific data. |||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress Authentic...
WordPress Authentic Theme - Arbitrary File Download
Authentic theme's "download.php" is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files from the web server and get potentially sensitive information. Solution Update the theme...
WordPress Theme Authentic - download.php Arbitrary File Download
WordPress Theme Authentic - download.php Arbitrary File Download source: https://www.securityfocus.com/bid/69671/info Authentic theme for Wordpress is prone to an arbitrary file-download vulnerability. An attacker can exploit this issue to download arbitrary files from the web server and obtain...
WordPress Theme Authentic - 'download.php' Arbitrary File Download
source: https://www.securityfocus.com/bid/69671/info Authentic theme for Wordpress is prone to an arbitrary file-download vulnerability. An attacker can exploit this issue to download arbitrary files from the web server and obtain potentially sensitive information...
WordPress Authentic Arbitrary File Download
|||||||||||||||||||||||||||||||||||||||||||||||||| |-------------------------------------------------------------------------| | Exploit Title: Wordpress Authentic Theme Arbitrary File Download Vulnerability | | Google Dork: inurl:wp-content/themes/authentic | | Date : Date: 2014-09-07 | | Exploi...
Mylar - Platform for building secure web applications
Web applications rely on servers to store and process confidential information. However, anyone who gains access to the server e.g., an attacker, a curious administrator, or a government can obtain all of the data stored there. Mylar protects data confidentiality even when an attacker gets full...