7 matches found
Discord warns users after data stolen in third-party breach
Popular social platform Discord has suffered a data breach—though technically, it wasn’t Discord itself that was hacked. A third-party customer support provider was compromised, allowing attackers to access Discord’s user data. Either way, it’s Discord users who feel the impact. The breach, which...
Google Pay, Drug Bots, and SIM Swaps: How Old Leaks and New Vulnerabilities Power Attacks
It starts with something simple: a CAPTCHA box on your screen. You type the number you see, because of course you do. That’s what humans do online. But what if that “CAPTCHA” wasn’t a CAPTCHA at all? In this post, I’ll walk you through how old data leaks, lazy telecom verification, and a...
Duplicate of GHSA-4xh4-v2pq-jvhm
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4xh4-v2pq-jvhm. This link is maintained to preserve external references. Original Description The personnummer implementation before 3.0.3 for Dart mishandles numbers in which the last four digits match the...
Dart 输入验证错误漏洞
Dart is an open source programming language. A security vulnerability exists in versions prior to Dart 3.0.3, which stems from personnummer incorrectly handling the last four digits of a number that matches a ^0000-9$ regular expression...
PT-2022-28157 · Python +8 · Python +9
Name of the Vulnerable Software and Affected Versions: personnummer versions prior to 3.0.3 Dart versions prior to 3.0.3 C versions prior to 3.0.2 Elixir versions prior to 3.0.0 Go versions prior to 3.0.1 Java versions prior to 3.3.0 JavaScript versions prior to 3.1.0 Kotlin versions prior to 1.1...
CVE-2022-30325
An issue was found on TRENDnet TEW-831DR 1.0 601.130.1.1356 devices. The default pre-shared key for the Wi-Fi networks is the same for every router except for the last four digits. The device default pre-shared key for both 2.4 GHz and 5 GHz networks can be guessed or brute-forced by an attacker...
Improper Input Validation
Overview Affected versions of this package are vulnerable to Improper Input Validation. The last four digits of the number are not validated. Remediation Upgrade personnummer to version 3.0.1 or higher. References - GitHub Additional Information - GitHub Advisory - GitHub Commit - GitHub Commit...