1663 matches found
Trump Signs Cybersecurity Executive Order
President Trump today signed a long-delayed cybersecurity executive order that prioritizes the protection of federal networks and critical industries, and instructs agency heads to implement the NIST Framework for Improving Critical Infrastructure Cybersecurity. The order was to be signed in late...
Don’t Pin the Macron Email Hack on Russia Just Yet
There are clues that the Kremlin hacked the French presidential candidate. But not yet enough to draw a conclusion. The post Don't Pin the Macron Email Hack on Russia Just Yet appeared first on WIRED...
Joomla JGrid 4.44 SQL Injection
Exploit Title: Joomla Component JGrid 4.44 - SQL Injection Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM Mojtaba Kazemi Vendor Home : https://extensions.joomla.org/extensions/extension/core-enhancements/data-reports/jgrid/ Home : http://persian-team.ir/ Telegram Channel AND Dem...
Joomla JGrid 4.44 SQL Injection Vulnerability
Joomla JGrid component version 4.44 suffers from a remote SQL injection vulnerability. Exploit Title: Joomla Component JGrid 4.44 - SQL Injection Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM Mojtaba Kazemi Vendor Home :...
The Time Has Arrived to Embrace Hackers
BOSTON—More than ever, hackers are getting a welcoming embrace from law enforcement, governments and business. Bug bounties and vulnerability disclosure programs are becoming the norm across industry, and hackers are no longer universally viewed as a pariah. Simultaneously, however, groups such a...
Joomla MyPortfolio 3.0.2 SQL Injection
Exploit Title: Joomla Component Myportfolio 3.0.2 - SQL Injection Exploit Author: Persian Hack Team Discovered by : Mojtaba Kazemi Mojtaba MobhaM Home : https://extensions.joomla.org/extensions/extension/directory-a-documentation/portfolio/myportfolio/ Home : http://persian-team.ir/ Telegram...
Joomla MyPortfolio 3.0.2 SQL Injection Vulnerability
Joomla MyPortfolio component version 3.0.2 suffers from a remote SQL injection vulnerability. Exploit Title: Joomla Component Myportfolio 3.0.2 - SQL Injection Exploit Author: Persian Hack Team Discovered by : Mojtaba Kazemi Mojtaba MobhaM Home :...
Joomla jDBexport 3.2.10 Cross Site Scripting / Path Disclosure
Exploit Title: Joomla Component jDBexport 3.2.10 - Cross-site scripting / Full Path Disclosure Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM Mojtaba Kazemi Home : https://extensions.joomla.org/extensions/extension/core-enhancements/data-reports/jdbexport/ Home :...
Joomla jDBexport 3.2.10 Cross Site Scripting / Path Disclosure Vulnerabilities
Joomla jDBexport component version 3.2.10 suffers from cross site scripting and path disclosure vulnerabilities Exploit Title: Joomla Component jDBexport 3.2.10 - Cross-site scripting / Full Path Disclosure Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM Mojtaba Kazemi Home :...
Joomla! Component Myportfolio 3.0.2 - 'pid' SQL Injection
Exploit Title: Joomla Component Myportfolio 3.0.2 - SQL Injection Exploit Author: Persian Hack Team Discovered by : Mojtaba Kazemi Mojtaba MobhaM Home : https://extensions.joomla.org/extensions/extension/directory-a-documentation/portfolio/myportfolio/ Home : http://persian-team.ir/ Telegram...
Joomla! Component Myportfolio 3.0.2 - pid SQL Injection
Joomla! Component Myportfolio 3.0.2 - pid SQL Injection Exploit Title: Joomla Component Myportfolio 3.0.2 - SQL Injection Exploit Author: Persian Hack Team Discovered by : Mojtaba Kazemi Mojtaba MobhaM Home :...
On The Latest ShadowBrokers Dump, Microsoft, Oracle, and the Bosch OBD-II Dongle Hack
Mike Mimoso and Chris Brook discuss the news of the week, including last Friday’s ShadowBrokers dump, how Microsoft learned and patched the vulnerabilities, and the Solaris bugs patched by Oracle. Microsoft ditching passwords, and a new car dongle hack are also discussed. Download:...
Trend Micro Threat Discovery Appliance - Session Generation Authentication Bypass (CVE-2016-8584)
In the last few months, I have been testing several Trend Micro products with Steven Seeley @steventseeley. Together, we have found more than 200+ RCE Remote Code Execution vulnerabilities and for the first time we presented the outcome of our research at Hack In The Box 2017 Amsterdam in April...
PTTBank - Certificates or keys found, External URLs, Suspicious files vulnerabilities
HackApp vulnerability scanner discovered that application PTTBank published at the 'play' market has multiple vulnerabilities...
Millions Of Smartphones Using Broadcom Wi-Fi Chip Can Be Hacked Over-the-Air
Millions of smartphones and smart gadgets, including Apple iOS and many Android handsets from various manufacturers, equipped with Broadcom Wifi chips are vulnerable to over-the-air hijacking without any user interaction. Just yesterday, Apple rushed out an emergency iOS 10.3.1 patch update to...
Joomla JobGrok Application 3.1-1.2.55 Component - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla Component JobGrok Application 3.1-1.2.55 - SQL Injection Date: 2017-04-02 Home : https://extensions.joomla.org/extension/job-grok-app/ Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM email protected Home ...
Joomla JobGrok Listing 3.1-1.2.58 Component - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla Component JobGrok Listing 3.1-1.2.58 - SQL Injection Date: 2017-04-02 Home : https://extensions.joomla.org/extensions/extension/ads-a-affiliates/jobs-a-recruitment/job-grok-list/ Discovered by : Mojtaba MobhaM...
Joomla JobGrok Application 3.1-1.2.55 SQL Injection
Exploit Title: Joomla Component JobGrok Application 3.1-1.2.55 - SQL Injection Date: 2017-04-02 Home : https://extensions.joomla.org/extension/job-grok-app/ Exploit Author: Persian Hack Team Discovered by : Mojtaba MobhaM [email protected] Home : http://persian-team.ir/ Telegram Channel AND...
Radio Hack Box - Tool to Demonstrate Vulnerabilities in Wireless Input Devices
The SySS Radio Hack Box is a proof-of-concept software tool to demonstrate the replay and keystroke injection vulnerabilities of the wireless keyboard Cherry B.Unlimited AES. Requirements Raspberry Pi Raspberry Pi Radio Hack Box shield a LCD, some LEDs, and some buttons nRF24LU1+ USB radio dongle...
Real instagram followers - External URLs, WebView JavaScript enabled, WebView files access vulnerabilities
HackApp vulnerability scanner discovered that application Real instagram followers published at the 'play' market has multiple vulnerabilities...