Lucene search
K

37 matches found

The Hacker News
The Hacker News
added 2025/11/06 11:59 a.m.3 views

From Tabletop to Turnkey: Building Cyber Resilience in Financial Services

Introduction Financial institutions are facing a new reality: cyber-resilience has passed from being a best practice to an operational necessity to a prescriptive regulatory requirement. Crisis management or Tabletop exercises, for a long time relatively rare in the context of cybersecurity, have...

5.9AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-7443

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
ICS
ICS
added 2025/07/21 12:30 a.m.11 views

ABB Busch-Welcome 2 Wire Door Opener Actuator

SUMMARY ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited this vulnerability could gain physical, unauthorized access to a Building where the product is installed 2. MITIGATING FACTORS ABB recommends double check...

8.6CVSS5.8AI score0.00192EPSS
Exploits0References11
Packet Storm News
Packet Storm News
added 2025/05/02 12:0 a.m.7 views

CISA: Dams Sector Crisis Management Handbook

The Dams Sector Crisis Management Handbook 2025 introduces crisis management concepts, explains how crisis management measures are an important component of an overall risk management framework, and highlights guidelines to apply these concepts to dams and related infrastructure...

7.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2025/04/25 4:0 p.m.38 views

​​Explore practical best practices to secure your data with Microsoft Purview​​

According to the Microsoft 2024 Data Security Index, organizations experience an average of 156 data security incidents annually, and this cyberthreat continues to be a top concern for data security decision-makers.1 A full 82% of security decision-makers believe a comprehensive, fully integrated...

6.5AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/03/18 5:48 a.m.2 views

Malicious code in defi-handbook (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8160c8cc94eeeb56db2b1b93ced943ad36eaba53c64c82a994bda43d14ab4dc2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/03/18 5:48 a.m.2 views

MAL-2025-2503 Malicious code in defi-handbook (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8160c8cc94eeeb56db2b1b93ced943ad36eaba53c64c82a994bda43d14ab4dc2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
ICS
ICS
added 2024/10/08 12:0 a.m.18 views

Schneider Electric Data Center Expert

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.6 ATTENTION : Exploitable remotely/low attack complexity Vendor : Schneider Electric Equipment : Data Center Expert Vulnerability : Improper Verification of Cryptographic Signature, Missing Authentication for Critical Function 2. RISK EVALUATION Successful...

7.2CVSS7.9AI score0.0054EPSS
Exploits0References11
Hacker One
Hacker One
added 2024/07/12 6:52 p.m.5 views

GitLab: Remove obsolete domain from handbook subdomain

Vulnerability description not provided...

7.1AI score
Exploits0
Wallarm Lab
Wallarm Lab
added 2024/01/29 12:32 p.m.27 views

OWASP Mobile Top 10

Unraveling the Key Components of the Renowned OWASP Mobile Top 10 Index The altruistic initiative, Open Network Application Defense Plan ONADP, spearheads a cluster of operations in its mission to enhance the level of software protection. A cardinal tool emerging from their efforts, The OWASP...

7.7AI score
Exploits0
Wordfence Blog
Wordfence Blog
added 2023/12/12 5:18 p.m.90 views

Over 100 WordPress Repository Plugins Affected by Shortcode-based Stored Cross-Site Scripting

On August 14, 2023, the Wordfence Threat Intelligence team began a research project to find Stored Cross-Site Scripting XSS via Shortcode vulnerabilities in WordPress repository plugins. This type of vulnerability enables threat actors with contributor-level permissions or higher to inject...

5.5CVSS5.9AI score0.19684EPSS
Exploits24
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:26 p.m.3 views

Malicious code in handbook-epub (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5edd736393f9c1bdbfd02f3d1a92f23913f61168099b0602f974509d6c91179a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:26 p.m.9 views

MAL-2022-3555 Malicious code in handbook-epub (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5edd736393f9c1bdbfd02f3d1a92f23913f61168099b0602f974509d6c91179a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:15 p.m.9 views

MAL-2022-4644 Malicious code in ml-handbook (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 417c62dc3f636666a96212766829fefb0d278fe9e68d8621d050a8ffc30052f0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:15 p.m.4 views

Malicious code in ml-handbook (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 417c62dc3f636666a96212766829fefb0d278fe9e68d8621d050a8ffc30052f0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
CISA
CISA
added 2021/10/07 12:0 a.m.14 views

CISA Releases Guidance: TIC 3.0 Remote User Use Case

In coordination with the Office of Management and Budget OMB, the Federal Chief Information Security Officer Council FCISO Trusted Internet Connections TIC Subcommittee, and the General Services Administration, CISA has released Trusted Internet Connections 3.0 Remote User Use Case. The Remote Us...

6.8AI score
Exploits0References8
ICS
ICS
added 2021/09/14 12:0 a.m.159 views

Schneider Electric Struxureware Data Center Expert

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: Struxureware Data Center Expert Vulnerabilities: OS Command Injection, Path Traversal 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow remote...

9.8CVSS10AI score0.03083EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2020/11/02 6:11 p.m.7 views

handbook.spherestandards.org Cross Site Scripting vulnerability OBB-1477598

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Gitee
Gitee
added 2020/05/06 3:20 p.m.4 views

Information_Collection_Handbook

Handbook of information collection for penetration testing...

6.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/02/05 2:3 p.m.6 views

handbook.unsw.edu.au XSS vulnerability

Open Bug Bounty ID: OBB-553436 Description| Value ---|--- Affected Website:| handbook.unsw.edu.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder