Lucene search
K

28 matches found

Talos Blog
Talos Blog
added 2023/09/14 6:0 p.m.38 views

Turns out even the NFL is worried about deepfakes

Welcome to this weeks edition of the Threat Source newsletter. Im at the point in the calendar year where Im a sponge for NFL content. I couldnt be happier to escape from my six-month American football-free slumber and am ready to watch games three days a week and listen to NFL podcasts or read...

5CVSS9.1AI score0.261EPSS
Exploits4
CVE
CVE
added 2023/01/03 11:0 a.m.64 views

CVE-2022-4871

CVE-2022-4871 affects nflpick-em.com up to version 2.2.x. The vulnerability is in the _Load_Users function of html/includes/runtime/admin/JSON/LoadUsers.php, where manipulating the sort parameter enables SQL injection. The administrative JSON entrypoint is required for exploitation, and remote in...

7.2CVSS6.2AI score0.00651EPSS
Exploits0References3Affected Software1
Talos Blog
Talos Blog
added 2022/04/28 11:0 a.m.13 views

Threat Source newsletter (April 28, 2022) — The 2022 Cybersecurity Mock Draft

By Jon Munshaw. Welcome to this week’s edition of the Threat Source newsletter that’s going to be a little different, but bear with me. In honor of the NFL Draft starting this evening — an event that Cisco is helping to secure — I thought it’d be appropriate to look at building a... This is only...

1.1AI score
Exploits0
ThreatPost
ThreatPost
added 2022/02/15 2:4 a.m.247 views

BlackByte Tackles the SF 49ers & US Critical Infrastructure

The San Francisco 49ers were recently kneecapped by a BlackByte ransomware attack that temporarily discombobulated the NFL team’s corporate IT network on the Big Buffalo Wing-Snarfing Day itself: Superbowl Sunday. BlackByte – a ransomware-as-a-service RaaS gang that leases its ransomware to...

9.1AI score
Exploits0References10
Openbugbounty
Openbugbounty
added 2020/10/17 2:34 p.m.8 views

nflpickspage.com Cross Site Scripting vulnerability OBB-1418070

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Schneier on Security
Schneier on Security
added 2020/07/24 9:7 p.m.29 views

Friday Squid Blogging: Introducing the Seattle Kraken

The Kraken is the name of Seattle's new NFL franchise. I have always really liked collective nouns as sports team names like the Utah Jazz or the Minnesota Wild, mostly because it's hard to describe individual players. As usual, you can also use this squid post to talk about the security stories ...

1AI score
Exploits0
ThreatPost
ThreatPost
added 2020/04/24 5:11 p.m.201 views

News Wrap: Nintendo Account Hacks, Apple Zero Days, NFL Security

For the week ended April 24, Threatpost editors discuss the hottest cybersecurity news stories, including: Apple zero days disclosed in the iPhone iOS that researchers say have been exploited for years. Meanwhile, Apple has pushed back and said there’s no evidence to support such activity. Ninten...

9.9AI score0.26869EPSS
Exploits0References17
ThreatPost
ThreatPost
added 2020/04/21 8:55 p.m.19 views

NFL Tackles Cybersecurity Concerns Ahead of 2020 Draft Day

The NFL draft is slated to start Thursday, and thanks to the COVID-19 pandemic, it will be the first virtual version of the event ever presented. This raises a few cybersecurity concerns, according to researchers and the teams themselves — but the NFL is planning on knocking the security ball...

6.7AI score
Exploits0References10
Openbugbounty
Openbugbounty
added 2018/08/19 7:9 p.m.8 views

imagecomposer.nfl.com XSS vulnerability

Open Bug Bounty ID: OBB-666674 Description| Value ---|--- Affected Website:| imagecomposer.nfl.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
hackapp
hackapp
added 2017/10/19 10:34 a.m.487 views

Madden NFL Football - Base64 encoded String, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Madden NFL Football published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2017/10/09 9:0 a.m.60 views

NFL Players and Agents Targeted in Database Extortion Attempt

A misconfigured database containing records belonging to 1,133 National Football League players and their agents was exposed via an unsecured Elasticsearch server. The database belongs to the NFL Players Association and includes the home address, phone numbers and IP addresses for hundreds of...

7.5CVSS9.5AI score0.99906EPSS
Exploits19References5
Openbugbounty
Openbugbounty
added 2017/09/20 11:59 p.m.15 views

nflcommunications.com XSS vulnerability

Vulnerable URL: https://nflcommunications.com/Pages/Forms/AllItems.aspx?FollowSite=0=%27-confirm%27OPENBUGBOUNTY%27-%27 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 20.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 278418 VIP...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/06/19 9:26 p.m.7 views

jeruji.tk XSS vulnerability

Vulnerable URL: http://jeruji.tk/news/2017-NFL-Free-Agency:-Winners-&-Losers-of-Week-2%22%27%2D%2D%21 Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 4947896 VIP website status:| No Check jeruji.tk SSL connection...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/02/27 5:37 a.m.25 views

scout.com XSS vulnerability

Vulnerable URL: http://www.scout.com/nfl/bears/a.z?s=25=9=12=2016=83=83"--!"=16=3 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 6321 VIP website status:| Yes Check scout.com SSL...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/10/31 9:23 p.m.13 views

gamepass.nfl.com XSS vulnerability

Vulnerable URL: https://gamepass.nfl.com/nflgp/secure/packages?icampaign=X%22;alertOPENBUGBOUNTY;// Details: Description| Value ---|--- Patched:| Yes, at 13.09.2017 Latest check for patch:| 13.09.2017 08:01 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/10/10 11:54 p.m.10 views

scout.com XSS vulnerability

Vulnerable URL: http://www.scout.com/nfl/bears/news?query=NoGe=prompt'OPENBUGBOUNTY'...

6.9AI score
Exploits0
hackapp
hackapp
added 2016/04/01 10:18 a.m.10 views

NFL PLAY 60 - Base64 encoded String, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application NFL PLAY 60 published at the 'play' market has multiple vulnerabilities...

0.5AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:29 a.m.16 views

NFL Emojis - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application NFL Emojis published at the 'play' market has multiple vulnerabilities...

0.5AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:28 a.m.9 views

NFL HUDDLE: NFL Card Trader - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application NFL HUDDLE: NFL Card Trader published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 9:28 a.m.14 views

Sports Alerts - NFL edition - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Sports Alerts - NFL edition published at the 'play' market has multiple vulnerabilities...

0.2AI score
Exploits0References1Affected Software1
Rows per page
Query Builder