The vulnerability of the Mozilla Firefox browser, which allows a hacker to execute arbitrary code on the target system

The vulnerability of the Mozilla Firefox browser is related to a border error in the canvas object. Exploiting this vulnerability allows an attacker to execute arbitrary code on the target system, as well as cause memory corruption...

WordPress Border Loading Bar plugin <= 1.0.1 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by iohex and WPScanTeam in WordPress Border Loading Bar plugin versions = 1.0.1. Solution This plugin has been closed as of September 7, 2021 and is not available for download. This closure is temporary, pending a full review...

MuPDF 缓冲区错误漏洞

Artifex Software MuPDF is a free, lightweight PDF reader from Artifex Software, USA. A buffer error vulnerability exists in MuPDF, which stems from a color converter in the product's buffer that does not properly take into account the size of the hash table's maximum key, and can be exploited by ...

BGP Routing Explained. How Border Gateway Protocol Works❓

What is BGP? BGP, fully known as Border Gateway Protocol is the postal help of the Internet. At the point when somebody drops a letter into a post box, the postal help measures that piece of mail and picks a quick, effective course to convey that letter to its beneficiary. Additionally, when...

What is DDoS attack❓ — Types and how to react to them

What is DDoS attack❓ — Types and how to react to them Distributed Denial of service attacks are assaults outfitted at making a PC, a cyber-service inaccessible by congesting it with traffic from various sources. The point is ordinarily to make the computers in question stop administration by...

Juniper Networks Junos OS 代码问题漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Junos OS that stems from the fact that on devices with multipathing or add-a-path...

Data privacy: What's new in cross-border transfers? The Standard Contractual Clauses

The transfer of personal data between companies and countries is vital for smooth data processing operations. When transferring data out of the European Union, companies are required to comply with the General Data Protection Regulation GDPR which requires that any data that is transferred to a...

File upload vulnerability in Speedcat ERP backend management system

Ltd. is an e-commerce management product specially developed for cross border e-commerce platforms such as Selling, Amazon and Ebay. There is a file upload vulnerability in the Quickcat ERP backend management system, which can be exploited by attackers to control the server by uploading Trojan...

CVE-2021-26928

BIRD through 2.0.7 does not provide functionality for password authentication of BGP peers. Because of this, products that use BIRD which may, for example, include Tigera products in some configurations, as well as products of other vendors may have been susceptible to route redirection for Denia...

PT-2021-17183 · Bird · Bird

Name of the Vulnerable Software and Affected Versions: BIRD versions 2.0.7 and earlier Description: The issue is related to the lack of password authentication functionality for BGP peers in BIRD, which may make products that use BIRD susceptible to route redirection, potentially leading to Denia...

BIRD 访问控制错误漏洞

BIRD is a full-featured dynamic IP routing daemon. An access control error vulnerability exists in BIRD 2.0.7, which stems from the fact that BIRD does not provide password authentication for BGP peers. The vulnerability could easily result in a denial of service and or information disclosure rou...

FFmpeg 输入验证错误漏洞

FFmpeg is a complete solution for recording, converting and streaming audio and video. A security vulnerability exists in FFmpeg, which stems from dwauncompress in libavcodec/exr.c that does not strictly check dccount, and can be exploited by an attacker to cross-border array access...

SQL Injection Vulnerability in Cross-border E-commerce Integrated Platform of Hualei Information Technology Co.

Ltd. is a professional information technology service provider, the use of cutting-edge science and technology, we focus on providing efficient, high-quality information technology solutions and information technology products and services for logistics enterprises. A SQL injection vulnerability...

SQL Injection Vulnerability in Cross-border E-commerce Order System of Hualei Information Technology Co.

Founded in 2013, Hualei Information Technology Co., Ltd. is a professional information technology service provider. A SQL injection vulnerability exists in the cross-border e-commerce order system of Hualei Information Technology Co. An attacker can exploit the vulnerability to obtain sensitive...

CVE-2020-7034

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system privileges. Affected versions of Avaya Session Border Controller for...

CVE-2020-7034

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system privileges. Affected versions of Avaya Session Border Controller for...

CVE-2020-7034 Command injection in Avaya Session Border Controller for Enterprise

A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affected system privileges. Affected versions of Avaya Session Border Controller for...

PT-2021-12636 · Avaya · Avaya Session Border Controller For Enterprise

Name of the Vulnerable Software and Affected Versions: Avaya Session Border Controller for Enterprise versions 7.x through 8.1.1.x Description: A command injection issue could allow an authenticated, remote attacker to send specially crafted messages and execute arbitrary commands with the affect...

Avaya Session Border Controller for Enterprise 命令注入漏洞

Avaya Session Border Controller for Enterprise is a firewall from the American company Avaya. a flexible, purpose-built enterprise solution-includes a set of standard security features. A command injection vulnerability exists in Avaya Session Border Controller that could allow an authenticated,...

CVE-2021-0250

In segment routing traffic engineering SRTE environments where the BGP Monitoring Protocol BMP feature is enable, a vulnerability in the Routing Protocol Daemon RPD process of Juniper Networks Junos OS allows an attacker to send a specific crafted BGP update message causing the RPD service to cor...