EUVD-2021-17098

Malware in sbrugna...

Hive Pro Achieves ISO/IEC 27001: 2022 Certification

Hive Pro has achieved ISO 27001: 2022 Certification, Demonstrating A Continuous Commitment to Excellence in Information Security August 8th, 2023 - HERNDON, VA: Hive Pro, a pioneer in the Threat Exposure Management market, is thrilled to announce that they have successfully attained ISO 27001:202...

ISO 27001 Certification: What it is and why it matters

Did you know that Rapid7 information security management system ISMS is ISO 27001 certified? This certification validates that our security strategy and processes meet very high standards. It underscores our commitment to corporate and customer data security. What is ISO 27001? ISO 27001 is an...

CVE-2021-30162

An issue was discovered on LG mobile devices with Android OS 4.4 through 11 software. Attackers can leverage ISMS services to bypass access control on specific content providers. The LG ID is LVE-SMP-210003 April 2021...

Design/Logic Flaw

An issue was discovered on LG mobile devices with Android OS 4.4 through 11 software. Attackers can leverage ISMS services to bypass access control on specific content providers. The LG ID is LVE-SMP-210003 April 2021...

CVE-2021-30162

CVE-2021-30162 affects LG mobile devices running Android 4.4–11. The issue involves ISMS services allowing attackers to bypass access control for specific content providers, identified by LG as LVE-SMP-210003 (April 2021). Public details across sources describe the vulnerability and its impact bu...

CVE-2021-30162

An issue was discovered on LG mobile devices with Android OS 4.4 through 11 software. Attackers can leverage ISMS services to bypass access control on specific content providers. The LG ID is LVE-SMP-210003 April 2021...

LG mobile 安全漏洞

LG mobile is a line of mobile device products from LG. A security vulnerability exists in LG mobile devices with Android OS 4.4 through 11 software, which can be exploited by an attacker to bypass access controls for specific content providers using ISMS services...

Key scoping factors when pursuing ISO 27001 certification

Service providers that seek the most recognized implementation of an information security baseline and governance structure should consider the ISO/IEC 27001:2013 "ISO 27001" standard. The information security management system ISMS prescribed by this widely adopted publication engages personnel ...

Pixie CMS 1.0 - Multiple Local File Inclusion Vulnerabilities

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-09-005 Application: Pixie CMS Versions Affected: 1.0 Vendor URL: http://www.getpixie.co.uk/ Bug: Multiple Local File Include Exploits: YES Reported: 29.08.2008 Vendor Response: 30.08.2008 Solution: NONE Date...

Visa Europe Cross Site Scripting

Visa Europe Official Website Vulnerability ============================================= Published Report: 07/02/2014 Credits: Advanced Information Security Corporation, USA Severity: High/Critical OWASP TOP 10 CVSS: 7.0 Type: Web Application / Reflected Cross-Site Scripting Attack. Author:...

OneCMS 2.5 (install_mod.php) Local File Inclusion Vulnerability

No description provided by source. Digital Security Research Group DSecRG Advisory DSECRG-08-034 Application: OneCMS Versions Affected: 2.5 Vendor URL: http://www.insanevisions.com/ Bug: Local File Include Exploits: YES Reported: 26.03.2008 Vendor Response: NONE Solution: NONE Date of Public...

PowerPHPBoard 1.00b - Multiple Local File Inclusions

PowerPHPBoard 1.00b - Multiple Local File Inclusions DSECRG-08-021 Digital Security Research Group DSecRG Advisory Application: PowerPHPBoard Versions Affected: 1.00b Vendor URL: http://www.powerscripts.org/ Bug: Multiple Local File Include Exploits: YES Reported: 01.02.2008 Vendor Response: none...

DSECRG-08-012.txt

Digital Security Research Group DSecRG Advisory DSECRG-08-012 Application: Azucar CMS Versions Affected: 1.3 Vendor URL: http://azucarcms.sourceforge.net/enhome.htm Bug: Multiple Local File Include Exploits: YES Reported: 30.01.2008 Vendor Response: NONE Date of Public Advisory: 05.02.2008 Author...

Aria 0.99-6 - page Local File Inclusion

Aria 0.99-6 - page Local File Inclusion Digital Security Research Group DSecRG Advisory DSECRG-08-002 Application: aria-0.99-6 Web based ERP Versions Affected: aria-0.99-6 Vendor URL: http://www.tucows.net/ Bug: Local File Include Exploits: YES Reported: 09.01.2008 Vendor Response: None Date of...

RunCMS 1.6 - Blind SQL Injection (IDS Evasion)

// / RUNCMS 1.6 BLIND SQL Injection Exploit + IDS evasion / // / exploit get hash of admin password / / / / Exploit is invisible for / / RUNCMS sql injection detecting mechanism / // // / tested on RUNCMS english version 1.6 / // // / Date of Public EXPLOIT: December 25, 2007 / / Written by:...

RunCMS 1.6 - Get Admin Cookie Blind SQL Injection

RunCMS 1.6 - Get Admin Cookie Blind SQL Injection // / RUNCMS 1.6 BLIND SQL Injection Exploit get Admin Cookie / // / exploit get admin cookie that can be used / / to login by pasting it into browser Opera / / and then get access to Admin session / / and change Admins password / / / // // / teste...