15 matches found
EUVD-2005-2595
Malware in sbrugna...
EUVD-2018-10695
Malware in sbrugna...
CVE-2024-46470
Cross Site Scripting vulnerability in CodeAstro Membership Management System 1.0 allows attackers to run malicious JavaScript via the membershiptype field in the edit-type.php component...
CVE-2021-27436
WebAccess/SCADA Versions 9.0 and prior is vulnerable to cross-site scripting, which may allow an attacker to send malicious JavaScript code to an unsuspecting user, which could result in hijacking of the user’s cookie/session tokens, redirecting the user to a malicious webpage and performing...
RHEL 9 : firefox (RHSA-2025:0138)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:0138 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...
CVE-2023-4757
The Staff / Employee Business Directory for Active Directory WordPress plugin before 1.2.3 does not sanitize and escape data returned from the LDAP server before rendering it in the page, allowing users who can control their entries in the LDAP directory to inject malicious javascript which could...
Cross site scripting
kirby is a content management system CMS that adapts to many different projects and helps you build your own ideal interface. Cross-site scripting XSS is a type of vulnerability that allows execution of any kind of JavaScript code inside the Panel session of the same or other users. In the Panel,...
When Hackers Take Advantage of Your Trusted Vendors
As JavaScript-based client-side attacks continue to evolve, we see how attackers are getting more sophisticated and employing more advanced techniques. Unfortunately, it has been proven many times that any website partner can be exploited to carry out an attack. In the past month, we witnessed on...
When Hackers Take Advantage of Your Trusted Vendors
As JavaScript-based client-side attacks continue to evolve, we see how attackers are getting more sophisticated and employing more advanced techniques. Unfortunately, it has been proven many times that any website partner can be exploited to carry out an attack. In the past month, we witnessed on...
Keep an eye on your computer: memory vulnerable to malicious attacks-vulnerability warning-the black bar safety net
Recently, security researchers demonstrated a new Rowhammer attack, using this technology can attack some of the DDR4 memory module. Rowhammer attacks affect a wide Rowhammer attack is known to be in the 2 0 1 4 year, Carnegie Mellon University researchers in a sufficient number of access number ...
Black Hat 2013: What Have We Learned
LAS VEGAS–The Black Hat conference is one of the best opportunities each year to see new and innovative research, commune with some of the smartest folks in the industry and generally get a sense of where things stand and where they’re going. This year’s conference was one of the larger in histor...
Web security hacks dominate Black Hat USA 2013
The security of the Web is looking a little like Al Bundy right about now look it up kids. Granted Black Hat is fresh on our minds and you always come away from that event less willing to use the Internet, but this year seemed especially bad in terms of new attacks—or new twists on old attacks—th...
Online Ad Networks Leverages to Launch Javascript Attacks
LAS VEGAS – Researchers have figured out how to leverage the reach of online advertising networks to distribute javascript of their choosing, creating the equivalent of a botnet of ad impressions capable of crashing underlying webservers or distributing malware on a massive scale for pennies on t...
Hijacked Web Sites Among The Most Visited On Google's Black List
Legitimate Web sites that have been hijacked and used to serve malicious content greately outnumber malicious sites on a list of the most-trafficked sites on Google’s blacklist, according to analysis by security firm Zscaler. Zscaler analyzed the top one million Web sites on the Web, based on...
Microsoft IE cookies readable via about: URLS
Microsoft Internet Explorer has a vulnerability which allows a malicious website to access any cookie in the browser's memory or those stored on disk. Cookies are used by web sites for storing preferences, statistics and tracking users, but also for storing more sensitive information such as...