uppy npm package server-side request forgery vulnerability

uppy npm package is a file upload package. A server-side request forgery vulnerability exists in versions of uppy npm package prior to 1.9.3, which can be exploited by an attacker to scan local or external networks or interact with internal systems...

Facebook Mistakenly Stored Millions of Users' Passwords in Plaintext

Holy moly, Facebook is again at the center of a new privacy controversy after revealing today that its platform mistakenly kept a copy of passwords for "hundreds of millions" users in plaintext. What's more? Not just Facebook, Instagram users are also affected by the latest security incident. So,...

Facebook Stored Passwords in Plain Text For Years

Hundreds of millions of Facebook user passwords have been stored in plain text for years, the social media giant acknowledged on Thursday. KrebsOnSecurity, which first reported the news, said that specifically between 200 and 600 million passwords were stored in plain text as early as 2012, and...

GitLab: Full access to internal Gitlab instances at redash.gitlab.com, dashboards.gitlab.com, prometheus.gitlab.com

Summary: Lack of proper ticket trick security leads to internal access on Gitlab instances. I did not use support.gitlab.com instead just using [email protected] email was suffice. Description: Getting a [email protected] Google Account After the Ticket Trick attack that Inti reported and...

Threatlist: Manufacturing, a Top Target for Espionage

When it comes to cyberattack-related reconnaissance and lateral movement activity, the manufacturing industry exhibits higher than normal rates. That’s according to Vectra’s 2018 Spotlight Report on Manufacturing, which crunched data from more than 4 million devices and workloads from customer...

Security Bulletin: Internal service types can be invoked in IBM Business Process Manager (BPM) and WebSphere Lombardi Edition (WLE) Process Portal (CVE-2015-0110)

Summary When invoking a service using the executeServiceByName URL, there is no access restriction based on the service type and services that were meant for internal use only are available for authenticated users. Vulnerability Details CVEID: CVE-2015-0110 DESCRIPTION: IBM Business Process Manag...

U.S. Dept Of Defense: SSRF on █████████ Allowing internal server data access

Summary: An end point on ██████ allows an internal access to the network thus revealing sensitive data and allowing internal tunneling Description: OAuth Plugin allows you to provide a url that gives a snap shot of the web page. We can pass internal URLS and conduct SSRF. Impact Critical...

CVE-2017-12351

A vulnerability in the guest shell feature of Cisco NX-OS System Software could allow an authenticated, local attacker to read and send packets outside the scope of the guest shell container. An attacker would need valid administrator credentials to perform this attack. The vulnerability is due t...

HDX Optimal Routing for Both Internal and External Gateway Access Using One Store

We have 2 types of connections, one external and one internal, we would like both connections to go through NetScaler gateways using a single StoreFront store. External connections work good, but when trying to connect internally the enumerations works and StoreFront passes the external details...

Microsoft Official Blog and Twitter account hacked by Syrian Electronic Army

It could be the worst day ever for Microsoft's patch management and Incident response team. A group of pro-Syrian hackers 'Syrian Electronic Army' has successfully compromised the official Twitter account of the Microsoft News @MSFTNews, Xbox Support. They also defaced the Microsoft's TechNet blo...

httpd: reverse web proxy vulnerability

The modproxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of 1 RewriteRule and 2 ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to...

CVE-2001-1135

The CVE-2001-1135 issue affects ZyXEL Prestige 642R and 642R-I routers. According to the connected documents, these devices can be reconfigured if the internal user knows the password and there is evidence of default credentials being present (HTTP web interface). The OpenVAS/Nessus entries indic...

CVE-2001-1135

ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known...