78 matches found
Welcoming a more diverse workforce into cybersecurity: expanding the pipeline
Despite much focus on increasing the number of women in cybersecurity, as an industry we are still falling short. For many companies the problem starts with the tech pipeline—there just aren’t enough resumes from qualified female candidates. But I think the real problem is that our definition of...
GitHub Increases Rewards, Scope For Bug Bounty Program
GitHub has bolstered its bug-bounty program with increased rewards, an expanded scope of products and the addition of legal “safe-harbor” terms aiming to protect bounty hunters. The web-based hosting service announced Tuesday that its program, first launched in 2014, will no longer have a maximum...
CVE-2018-19278
Buffer overflow in DNS SRV and NAPTR lookups in Digium Asterisk 15.x before 15.6.2 and 16.x before 16.0.1 allows remote attackers to crash Asterisk via a specially crafted DNS SRV or NAPTR response, because a buffer size is supposed to match an expanded length but actually matches a compressed...
Qualys Cloud Platform (VM, SCA, PC) 8.15 New Features
This new release of the Qualys Cloud Platform VM, SCA, PC, version 8.15, includes several new improvements across the VM, PC, and SCA Apps including new IPv6 configuration options for the scanner, improvements to several VM reports including ability to display EC2 metadata, a new Policy Complianc...
[SECURITY] Fedora 26 Update: guava-18.0-12.fc26
Guava is a suite of core and expanded libraries that include utility classes, Google=EF=BF=BD=EF=BF=BD=EF=BF=BDs collections, io classes , and much much more. This project is a complete packaging of all the Guava libraries into a single jar. Individual portions of Guava can be used by downloading...
[SECURITY] Fedora 28 Update: guava-24.0-3.fc28
Guava is a suite of core and expanded libraries that include utility classes, Google=EF=BF=BD=EF=BF=BD=EF=BF=BDs collections, io classes , and much much more. This project is a complete packaging of all the Guava libraries into a single jar. Individual portions of Guava can be used by downloading...
Qualys Cloud Platform (VM, PC) 8.13 New Features
This new release of the Qualys Cloud Platform VM, PC, version 8.13, includes several new feature improvements across the apps such as the ability to test authentication records, as well as improvements to UDC’s and report options in Qualys Policy Compliance. Feature Highlights Qualys Cloud Platfo...
PHP-Fusion module Expanded Calendar 2.x SQL Injection Exploit
No description provided by source. ?php printr" / Expanded Calendar 2.x PHP-Fusion module User pass disclosure exploit Found by Matrix86 of Rbt-4 Crew Site: www.rbt-4.net Mail: infoatrbt-4dotnet Bug found in  ...
Sql injection
SQL injection vulnerability in infusions/calendareventspanel/showsingle.php in the Expanded Calendar 2.x module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the sel parameter...
PHP-Fusion module Expanded Calendar 2.x SQL Injection Exploit
Exploit for unknown platform in category web applications ============================================================= PHP-Fusion module Expanded Calendar 2.x SQL Injection Exploit ============================================================= ?php printr" / Expanded Calendar 2.x PHP-Fusion modul...
PHP-Fusion module Expanded Calendar 2.x - SQL Injection
PHP-Fusion module Expanded Calendar 2.x - SQL Injection ?php printr" / Expanded Calendar 2.x PHP-Fusion module User pass disclosure exploit Found by Matrix86 of Rbt-4 Crew Site: www.rbt-4.net Mail: infoatrbt-4dotnet Bug found in /infusions/calendareventspanel/showsingle.php Line: 27 Vulnerability...
PHP-Fusion module Expanded Calendar 2.x - SQL Injection
?php printr" / Expanded Calendar 2.x PHP-Fusion module User pass disclosure exploit Found by Matrix86 of Rbt-4 Crew Site: www.rbt-4.net Mail: infoatrbt-4dotnet Bug found in /infusions/calendareventspanel/showsingle.php Line: 27 Vulnerability type: Sql injection Unpatched! Patch: Line 26:...
Sql injection
SQL injection vulnerability in showevent.php in the Expanded Calendar calendarpanel 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the mmonth parameter...
CVE-2007-1845
SQL injection vulnerability in showevent.php in the Expanded Calendar calendarpanel 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the mmonth parameter...
CVE-2007-1845
SQL injection vulnerability in showevent.php in the Expanded Calendar calendarpanel 2.00 module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the mmonth parameter...
MDKA-2005:046 : drakxtools
A new version of the HPLIP driver suite is now available. This new version introduces support for parallel printers and multi-function devices; now USB, parallel, and network TCP/Socket devices are now fully supported, as well as the devices that the former HPOJ suite handled. The new HPLIP suite...
CVE-2005-4684
Konqueror can associate a cookie with multiple domains when the DNS resolver has a non-root domain in its search list, which allows remote attackers to trick a user into accepting a cookie for a hostname formed via search-list expansion of the hostname entered by the user, or steal a cookie for a...
Azure File Sync Agent v17 Release - December 2023
None None...