12 matches found
CVE-2025-7631
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Tumeva Internet Technologies Software Information Advertising and Consulting Services Trade Ltd. Co. Tumeva Prime News Software allows SQL Injection. This issue affects Tumeva Prime News Software:...
CVE-2025-9035
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Horato Internet Technologies Ind. And Trade Inc. Virtual Library Platform allows Reflected XSS.This issue affects Virtual Library Platform: before v202...
CVE-2025-9035
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Horato Internet Technologies Ind. And Trade Inc. Virtual Library Platform allows Reflected XSS. This issue affects Virtual Library Platform: before v202...
CVE-2025-9035 Reflected XSS in Horato Internet Technologies' Virtual Library Platform
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Horato Internet Technologies Ind. And Trade Inc. Virtual Library Platform allows Reflected XSS. This issue affects Virtual Library Platform: before v202...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Macroturk Software and Internet Technologies Macro-Bel allows Reflected XSS.This issue affects Macro-Bel: before V.1.0.1...
CVE-2023-7153
CVE-2023-7153 corresponds to a reflected XSS vulnerability in Macro-Bel, a product of MacroTurk Software and Internet Technologies. Affected component is the Macro-Bel web interface, with the root cause described as improper neutralization of input during web page generation. The issue is exploit...
Should There Be Limits on Persuasive Technologies?
Persuasion is as old as our species. Both democracy and the market economy depend on it. Politicians persuade citizens to vote for them, or to support different policy positions. Businesses persuade consumers to buy their products or services. We all persuade our friends to accept our choice of...
Apple Safari WebKit JSString Use After Free Code Execution (CVE-2017-2491)
Safari is a web browsing application developed by Apple. Safari browsing functionality is built around the set of components called WebKit. WebKit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP, and others. A...
Internet Bug Bounty Pays $10k for Flash Vulnerability
The Internet Bug Bounty program, a cooperative effort among security experts and vendors, paid out its first $10,000 bounty this week for a serious Flash vulnerability. The flaw, which Adobe fixed in December, was a serious one that has been used in targeted attacks. Started in November, the...
Google Broadens its Patch Rewards Program
Microsoft and Google appear to be the primary belligerents in an anti-arms race that pays security researchers to sniff out bugs on the Internet. Yesterday it was Google’s turn to proliferate the scope of its bug bounty program. More robust, high paying, and far reaching bug bounties are good new...
The World Now, "Third Age" Cyber Crime !
The year 2010 was a crime of great team and could prove to mark the beginning of a "third age" of computer crimes, security expert Graham Cluley of Sophos, said before the review of the latest threats Company year. The first period was marked by amateur hackers and virus creation on the PC, the...
FlexCMS Insecure Cookie Handling
============================================================================== » FlexCMS Insecure Cookie Handling Vulnerability ============================================================================== » Script: FlexCMS v3.1 » Language: PHP » Site page: FlexCMS is a joint venture of DCSun...