77 matches found
WordPress plugin LTL Freight Quotes – For Customers of FedEx Freight SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. The WordPress plugin LTL Freight Quotes - For...
WordPress LTL Freight Quotes – For Customers of FedEx Freight plugin <= 3.4.1 - Unauthenticated SQL Injection vulnerability
Unauthenticated SQL Injection vulnerability discovered by Colin Xu in WordPress Plugin LTL Freight Quotes – For Customers of FedEx Freight versions = 3.4.1...
fedex.servicesuniforms.com Cross Site Scripting vulnerability OBB-3837501
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2023-29292 Server Side Request Forgery (SSRF) in FedEx carrier integration configuration
Adobe Commerce versions 2.4.6 and earlier, 2.4.5-p2 and earlier and 2.4.4-p3 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could lead to arbitrary file system read. An admin-privilege authenticated attacker can force the application to make arbitrary requests v...
‘Tis the Season for the Wayward Package Phish
The holiday shopping season always means big business for phishers, who tend to find increased success this time of year with a lure about a wayward package that needs redelivery. Heres a look at a fairly elaborate SMS-based phishing scam that spoofs FedEx in a bid to extract personal and financi...
FluBot Android malware mimics FedEx, Chrome apps to steal user data
By Deeba Ahmed Cybersecurity company PRODAFT reports that newly discovered FluBot Android malware is impersonating an Android mobile banking application. This is a post from HackRead.com Read the original post: FluBot Android malware mimics FedEx, Chrome apps to steal user data...
10K Microsoft Email Users Hit in FedEx Phishing Attack
Researchers are warning of recent phishing attacks targeting at least 10,000 Microsoft email users, pretending to be from popular mail couriers – including FedEx and DHL Express. Click to Register Both scams have targeted Microsoft email users and aim to swipe their work email account credentials...
Compromising vital infrastructure: transport and logistics
Back when I was a dispatcher for a courier and trucking company, we used to joke that it only took a few strategically-placed accidents to cause a traffic jam that could completely stop circulation around the city of Rotterdam. Rotterdam is one of the major ports in the world and consequently,...
119,000 FedEx users passports, security ID & driving licenses exposed
By Waqas It is just another day with just another privacy invasion This is a post from HackRead.com Read the original post: 119,000 FedEx users passports, security ID & driving licenses exposed...
Kaspersky Security Bulletin: Review of the Year 2017
Introduction The end of the year is a good time to take stock of the main cyberthreat incidents that took place over the preceding 12 months or so. To reflect on the impact these events had on organizations and individuals, and consider what they could mean for the overall evolution of the threat...
Threat Outbreak Alert RuleID31411: Email Messages Distributing Malicious Software on November 22, 2017
Medium Alert ID: 56031 First Published: 2017 November 22 16:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31411 may contain the following files: Name |...
Threat Outbreak Alert RuleID31400: Email Messages Distributing Malicious Software on November 22, 2017
Medium Alert ID: 56025 First Published: 2017 November 22 15:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31400 may contain the following files: Name |...
Threat Outbreak Alert RuleID31295: Email Messages Distributing Malicious Software on November 14, 2017
Medium Alert ID: 55917 First Published: 2017 November 14 16:06 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31295 may contain the following files: Name |...
Threat Outbreak Alert RuleID31284: Email Messages Distributing Malicious Software on November 14, 2017
Medium Alert ID: 55909 First Published: 2017 November 14 14:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31284 may contain the following files: Name |...
fedex.com XSS vulnerability
Open Bug Bounty ID: OBB-411367 Description| Value ---|--- Affected Website:| fedex.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...
IT threat evolution Q3 2017
Targeted attacks and malware campaigns Re-enter the dragon In July, we reported on the recent activities of a targeted attack group called 'Spring Dragon' also known as LotusBlossom, whose activities data back to 2012. Spring Dragon makes extensive use of spear-phishing and watering-hole attacks...
fedex.com Open Redirect vulnerability
Vulnerable URL: http://fedex.com/us/demo/claimsonline/detect/flashdetection.swf?flashContentURL=https://openbugbounty.org Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 07.01.2018 Vulnerability type:| Open Redirect Vulnerability status:| Publicly...
fedex.com XSS vulnerability
Vulnerable URL: http://www.fedex.com/us/account/fbo/demo/detect/flashdetection.swf?flashContentURL=https://openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 04.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 452 VIP...
fedex.com XSS vulnerability
Vulnerable URL: http://www.fedex.com/us/account/fbo/demo/detect/flashdetection.swf?flashContentURL=javascript:alert'OPENBUGBOUNTY' Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 02.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly...
local.fedex.com XSS vulnerability
Vulnerable URL: http://local.fedex.com/search/Colorado/'%22--!%3E%20%3Cimg%20src=x%20onerror=alert%22openbugbounty%22%3E/ Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...