4 matches found
CVE-2023-49032
An issue in LTB Self Service Password before v.1.5.4 allows a remote attacker to execute arbitrary code and obtain sensitive information via hijack of the SMS verification code function to arbitrary phone...
Grab: Blind stored xss [parcel.grab.com] > name parameter
Hi, my previously reported blind xss is fixed but i found same type of xss in diffrent area with more impact. Steps to repro: 1. create new account with name " here https://parcel.grab.com/ 2. afftected page is https://app.detrack.com/a/ where admin can see all the user's of application and this ...
Cisco Linksys routers vulnerable to remote zero-day exploit
A zero-day vulnerability has been discovered in popular Cisco Linksys routers that allows hackers to gain remote root access. Security vendor DefenseCode discovered the flaw and reported it to Cisco months ago and a fix is already on the way. According to Cisco, more than 70 million Linksys route...
Microsoft Internet Explorer multiple security vulnerabilities
Memory corruptions, information hijack, crossite scripting...