Lucene search
+L

77 matches found

CNNVD
CNNVD
added 2025/02/12 12:0 a.m.3 views

WordPress plugin LTL Freight Quotes – For Customers of FedEx Freight SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. The WordPress plugin LTL Freight Quotes - For...

7.5CVSS8.5AI score0.00426EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/11 10:54 p.m.5 views

WordPress LTL Freight Quotes – For Customers of FedEx Freight plugin <= 3.4.1 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Colin Xu in WordPress Plugin LTL Freight Quotes – For Customers of FedEx Freight versions = 3.4.1...

7.5CVSS8.1AI score0.00426EPSS
Exploits0References1Affected Software1
Openbugbounty
Openbugbounty
added 2024/01/18 9:0 a.m.7 views

fedex.servicesuniforms.com Cross Site Scripting vulnerability OBB-3837501

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Cvelist
Cvelist
added 2023/06/15 12:0 a.m.36 views

CVE-2023-29292 Server Side Request Forgery (SSRF) in FedEx carrier integration configuration

Adobe Commerce versions 2.4.6 and earlier, 2.4.5-p2 and earlier and 2.4.4-p3 and earlier are affected by a Server-Side Request Forgery SSRF vulnerability that could lead to arbitrary file system read. An admin-privilege authenticated attacker can force the application to make arbitrary requests v...

4.9CVSS5.4AI score0.00861EPSS
Exploits0References1
Krebs on Security
Krebs on Security
added 2021/11/04 4:49 p.m.23 views

‘Tis the Season for the Wayward Package Phish

The holiday shopping season always means big business for phishers, who tend to find increased success this time of year with a lure about a wayward package that needs redelivery. Heres a look at a fairly elaborate SMS-based phishing scam that spoofs FedEx in a bid to extract personal and financi...

6.6AI score
Exploits0
HackRead
HackRead
added 2021/03/08 7:20 p.m.37 views

FluBot Android malware mimics FedEx, Chrome apps to steal user data

By Deeba Ahmed Cybersecurity company PRODAFT reports that newly discovered FluBot Android malware is impersonating an Android mobile banking application. This is a post from HackRead.com Read the original post: FluBot Android malware mimics FedEx, Chrome apps to steal user data...

3.1AI score
Exploits0
ThreatPost
ThreatPost
added 2021/02/23 2:0 p.m.162 views

10K Microsoft Email Users Hit in FedEx Phishing Attack

Researchers are warning of recent phishing attacks targeting at least 10,000 Microsoft email users, pretending to be from popular mail couriers – including FedEx and DHL Express. Click to Register Both scams have targeted Microsoft email users and aim to swipe their work email account credentials...

6.8AI score
Exploits0References9
Malwarebytes
Malwarebytes
added 2018/11/06 6:5 p.m.98 views

Compromising vital infrastructure: transport and logistics

Back when I was a dispatcher for a courier and trucking company, we used to joke that it only took a few strategically-placed accidents to cause a traffic jam that could completely stop circulation around the city of Rotterdam. Rotterdam is one of the major ports in the world and consequently,...

0.1AI score
Exploits0
HackRead
HackRead
added 2018/02/16 9:24 p.m.39 views

119,000 FedEx users​ ​passports, security ID & driving licenses exposed

By Waqas It is just another day with just another privacy invasion This is a post from HackRead.com Read the original post: 119,000 FedEx users​ ​passports, security ID & driving licenses exposed...

7AI score
Exploits0
Securelist
Securelist
added 2017/12/05 10:0 a.m.30 views

Kaspersky Security Bulletin: Review of the Year 2017

Introduction The end of the year is a good time to take stock of the main cyberthreat incidents that took place over the preceding 12 months or so. To reflect on the impact these events had on organizations and individuals, and consider what they could mean for the overall evolution of the threat...

6.9AI score
Exploits0
Cisco Threats
Cisco Threats
added 2017/11/22 4:47 p.m.30 views

Threat Outbreak Alert RuleID31411: Email Messages Distributing Malicious Software on November 22, 2017

Medium Alert ID: 56031 First Published: 2017 November 22 16:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31411 may contain the following files: Name |...

6.9AI score
Exploits0
Cisco Threats
Cisco Threats
added 2017/11/22 3:32 p.m.14 views

Threat Outbreak Alert RuleID31400: Email Messages Distributing Malicious Software on November 22, 2017

Medium Alert ID: 56025 First Published: 2017 November 22 15:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31400 may contain the following files: Name |...

6.8AI score
Exploits0
Cisco Threats
Cisco Threats
added 2017/11/14 4:6 p.m.23 views

Threat Outbreak Alert RuleID31295: Email Messages Distributing Malicious Software on November 14, 2017

Medium Alert ID: 55917 First Published: 2017 November 14 16:06 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31295 may contain the following files: Name |...

7AI score
Exploits0
Cisco Threats
Cisco Threats
added 2017/11/14 2:50 p.m.15 views

Threat Outbreak Alert RuleID31284: Email Messages Distributing Malicious Software on November 14, 2017

Medium Alert ID: 55909 First Published: 2017 November 14 14:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31284 may contain the following files: Name |...

6.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/11/13 6:23 a.m.111 views

fedex.com XSS vulnerability

Open Bug Bounty ID: OBB-411367 Description| Value ---|--- Affected Website:| fedex.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

6.4AI score
Exploits0
Securelist
Securelist
added 2017/11/10 10:9 a.m.70 views

IT threat evolution Q3 2017

Targeted attacks and malware campaigns Re-enter the dragon In July, we reported on the recent activities of a targeted attack group called 'Spring Dragon' also known as LotusBlossom, whose activities data back to 2012. Spring Dragon makes extensive use of spear-phishing and watering-hole attacks...

7.6AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/07 4:33 a.m.9 views

fedex.com Open Redirect vulnerability

Vulnerable URL: http://fedex.com/us/demo/claimsonline/detect/flashdetection.swf?flashContentURL=https://openbugbounty.org Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 07.01.2018 Vulnerability type:| Open Redirect Vulnerability status:| Publicly...

6.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/06 3:18 a.m.10 views

fedex.com XSS vulnerability

Vulnerable URL: http://www.fedex.com/us/account/fbo/demo/detect/flashdetection.swf?flashContentURL=https://openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 04.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 452 VIP...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/10/04 3:59 a.m.13 views

fedex.com XSS vulnerability

Vulnerable URL: http://www.fedex.com/us/account/fbo/demo/detect/flashdetection.swf?flashContentURL=javascript:alert'OPENBUGBOUNTY' Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 02.01.2018 Vulnerability type:| XSS Vulnerability status:| Publicly...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/09/29 9:16 a.m.9 views

local.fedex.com XSS vulnerability

Vulnerable URL: http://local.fedex.com/search/Colorado/'%22--!%3E%20%3Cimg%20src=x%20onerror=alert%22openbugbounty%22%3E/ Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

6.3AI score
Exploits0
Rows per page
Query Builder