MyBook Users Urged to Unplug Devices from Internet

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affect...

CVE-2019-12195

CVE-2019-12195 affects TP-Link TL-WR840N v5 00000005. The vulnerability is a cross‑site scripting flaw in the device’s web interface that can be triggered via the network name. Exploitation requires the attacker to log in by breaking the password (e.g., via THC-HYDRA) and access the admin login p...

Multiple flaws found in smart syringe pump

A syringe pump is a small infusion pump that delivers liquids, either medication or nutrients, in small quantities into the patient's system. Hospitals, nursing homes, and homes with residents under acute or palliative care use them. Accurate and safe delivery of dosage from a variety of syringes...

OptusHuawei E960 HSDPA Router - Sms Cross-Site Scripting

OptusHuawei E960 HSDPA Router - Sms Cross-Site Scripting XSS Attack using SMS to Optus/Huawei E960 HSDPA Router Synopsis -------- Huawei E960 HSDPA Router firmware version 246.11.04.11.110sp04 is vulnerable to XSS attack using SMS. One of the feature of this router is the ability to send and...