15 matches found
[SECURITY] [DLA 4569-1] tzdata new timezone database
------------------------------------------------------------------------- Debian LTS Advisory DLA-4569-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort May 07, 2026 https://wiki.debian.org/LTS -...
EUVD-2006-5579
Malware in sbrugna...
Body Found in Canada Identified as Neo-Nazi Spam King
The body of a man found shot inside a burned out vehicle in Canada three years ago has been identified as that of Davis Wolfgang Hawke, a prolific spammer and neo-Nazi who led a failed anti-government march on Washington, D.C. in 1999, according to news reports. Homicide detectives said they...
Fake COVID-19 survey hides ransomware in Canadian university attack
This post was authored by Jérôme Segura with contributions from Hossein Jazi, Hasherezade and Marcelo Rivero. In recent weeks, weve observed a number of phishing attacks against universities worldwide which we attributed to the Silent Librarian APT group. On October 19, we identified a new phishi...
LifeLabs Paid Hackers to Recover Stolen Medical Data of 15 Million Canadians
LifeLabs, the largest provider of healthcare laboratory testing services in Canada, has suffered a massive data breach that exposed the personal and medical information of nearly 15 million Canadians customers. The company announced the breach in a press release posted on its website, revealing...
Friday Squid Blogging: British Columbia "Squid Run" Is a Tourist Attraction
On James Island. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here...
britishcolumbia.farmvisit.com XSS vulnerability
Open Bug Bounty ID: OBB-653467 Description| Value ---|--- Affected Website:| britishcolumbia.farmvisit.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2017-1000247
British Columbia Institute of Technology CodeIgniter 3.1.3 is vulnerable to HTTP Header Injection in the setstatusheader common function under Apache resulting in HTTP Header Injection flaws...
Design/Logic Flaw
British Columbia Institute of Technology CodeIgniter 3.1.3 is vulnerable to HTTP Header Injection in the setstatusheader common function under Apache resulting in HTTP Header Injection flaws...
CVE-2017-1000247
CVE-2017-1000247 affects CodeIgniter 3.1.3 with an HTTP header injection vulnerability in set_status_header() under Apache. Root cause is injection via header handling in that function, leading to header manipulation. A patch is available in CodeIgniter 3.1.4 (see changelog link). If using 3.1.3,...
JapsPer pointer undefined vulnerability analysis-vulnerability warning-the black bar safety net
0×01: introduction JapsPer project is an open source project, it provides a method based on the jpeg-2000 part of the standard. This project was originally developed by Image Power and University of British Columbia collaboration. Currently, the ongoing JapsPer software maintenance and developmen...
prestigerealty.ca XSS vulnerability
Vulnerable URL: http://prestigerealty.ca/search.php?searchform=yes=city=British+Columbiasize=%22%3E%3C%2Ftitle%3E%27%3E%3B%3C%2Fscript%3E%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3Esize=&Submit.x;=78&Submit.y;=28price=1%2C000%2C000price== Details: Description| Value ---|--- Patched:| Yes, ...
Promiscuous Facebookers More Likely To Fall For Fake Friend Scams
Having more friends on Facebook might not mean you’re popular, but it does make you more likely to accept an invitation from a fake friend, according to research from the University of British Columbia. In a paper to be presented in December at the Annual Computer Security Application Conference ...
CVE-2006-5594
PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: it is possible that this issue is related to CakePHP...
CVE-2006-5594
PHP remote file inclusion vulnerability in University of British Columbia iPeer 2.0, and possibly earlier, allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: it is possible that this issue is related to CakePHP...