35 matches found
EUVD-2018-3287
Malware in sbrugna...
Navigating Interconnections: Correlations Between the US Tech 100 Index and Major Indices
By Owais Sultan In the ever-evolving landscape of financial markets, the US Tech 100 Index, represented by the Nasdaq 100, emerges… This is a post from HackRead.com Read the original post: Navigating Interconnections: Correlations Between the US Tech 100 Index and Major Indices...
A Chief Security Concern for Executive Teams
Virtually all companies like to say they take their customers' privacy and security seriously, make it a top priority, blah blah. But you'd be forgiven if you couldn't tell this by studying the executive leadership page of each company's Web site. That's because very few of the world's biggest...
With The NASDAQ Bell Ceremony, We Kick Off The Next Leg of Imperva’s Incredible Journey
On Friday morning our CEO Chris Hylen and company execs rung the NASDAQ opening bell in New York, welcoming another day of trading for the world’s second-largest stock exchange; and taking full advantage of the opportunity to celebrate recent corporate milestones for Imperva. “I’m honored to be...
CVE-2018-11247
The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component, which allows remote attackers to execute arbitrary code via a session on port 81...
CVE-2018-11247
The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component, which allows remote attackers to execute arbitrary code via a session on port 81...
Design/Logic Flaw
The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component, which allows remote attackers to execute arbitrary code via a session on port 81...
CVE-2018-11247
The JMX/RMI interface in Nasdaq BWise 5.0 does not require authentication for an SAP BO Component, which allows remote attackers to execute arbitrary code via a session on port 81...
CVE-2018-11247
Summary: CVE-2018-11247 affects Nasdaq BWise 5.0 via the JMX/RMI interface (SAP BO Component). The vulnerability arises from no authentication on port 81, enabling remote attackers to load and execute arbitrary code. The exploit path described involves connecting to the MBean server and using met...
Nasdaq BWise 5.0 JMX/RMI Interface Remote Code Execution
CONVISO-18-001 - Nasdaq BWise JMX/RMI RCE 1. Advisory Information Conviso Advisory ID: CONVISO-18-001 CVE ID: CVE-2018-11247 CVSS v2: CVSS v2: 8.8,AV:N/AC:M/Au:N/C:C/I:C/A:N Date: 16/05/2018 2. Affected Components Nasdaq BWise 5.0 JMX/RMI interface 3. Description Nasdaq BWise 5.0, through its...
nasdaq.com XSS vulnerability
Open Bug Bounty ID: OBB-616268 Description| Value ---|--- Affected Website:| nasdaq.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
nasdaq.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-564268 Description| Value ---|--- Affected Website:| nasdaq.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Disclosure Standard:| Coordinated Disclosure based on ISO 29147...
nasdaq.com Open Redirect vulnerability
Open Bug Bounty ID: OBB-562043 Description| Value ---|--- Affected Website:| nasdaq.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...
Hackers who stole $300 million, hacked Citibank & Nasdaq are jailed
By Uzair Amir Two Russian Hackers Charged with Running America’s Largest Credit-Card Information This is a post from HackRead.com Read the original post: Hackers who stole $300 million, hacked Citibank & Nasdaq are jailed...
charting.nasdaq.com XSS vulnerability
Open Bug Bounty ID: OBB-550078 Description| Value ---|--- Affected Website:| charting.nasdaq.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Disclosure Standard:| Coordinated Disclosure...
research.investors.com XSS vulnerability
Open Bug Bounty ID: OBB-547966 Description| Value ---|--- Affected Website:| research.investors.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
R.I.P. root9B? We Hardly Knew Ya!
root9B Holdings, a company that many in the security industry consider little more than a big-name startup aimed at cashing in on the stock market's insatiable appetite for cybersecurity firms, surprised no one this week when it announced it was ceasing operations at the end of the year. Founded ...
nasdaq.com XSS vulnerability
Vulnerable URL: http://www.nasdaq.com/aspx/validatedownload.aspx?file=http://www.nasdaq.com/screening/companies-by-name.aspx";alert/XSSPOSED/;function redirectx// Details: Description| Value ---|--- Patched:| Yes, at 24.03.2016 Latest check for patch:| 24.03.2016 10:00 GMT Vulnerability type:| XS...
Investors Application Cross Site Scripting
Document Title: =============== Investors Application - Client Side Cross Site Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1540 Facebook Security ID: 246414938 Release Date: ============= 2016-02-12 Vulnerability Laboratory ID VL-ID:...
Nasdaq to Use Bitcoin-style Blockchain to Record Shareholder Votes
The Nasdaq stock exchange and the Republic of Estonia have announced the use of Blockchain-based technology to allow shareholders of companies to e-vote in shareholder meetings even when they're abroad, according to Nasdaq's press release. Global stock market giant is developing an electronic...