INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests

INTERPOL has coordinated a first-of-its-kind cybercrime crackdown across the Middle East and North Africa MENA that led to 201 arrests and the identification of an additional 382 suspects. The initiative involved the efforts of 13 countries from the region, aiming to investigate and neutralize...

EUVD-2014-6666

Malware in sbrugna...

oman-source.com Cross Site Scripting vulnerability OBB-3566105

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers

Citizen Lab published another report on the spyware used against two Egyptian nationals. One was hacked by NSO Groups Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox. We havent heard a lot about Cytrox and its Predator...

Xfilesharing 2.5.1 - Arbitrary File Upload Vulnerability

Exploit for php platform in category web applications Exploit Title: Xfilesharing 2.5.1 - Arbitrary File Upload Google Dork: inurl:/?op=registration Exploit Author: Noman Riffat Vendor Homepage: https://sibsoft.net/xfilesharing.html Version: Shell : http://xyz.com/cgi-bin/temp/joe/shell.php Local...

Xfilesharing 2.5.1 Local File Inclusion / Shell Upload

Exploit Title: Xfilesharing 2.5.1 - Arbitrary File Upload Google Dork: inurl:/?op=registration Date: 2019-11-4 Exploit Author: Noman Riffat Vendor Homepage: https://sibsoft.net/xfilesharing.html Version: Shell : http://xyz.com/cgi-bin/temp/joe/shell.php Local File Inclusion...

oman-4.com XSS vulnerability

Open Bug Bounty ID: OBB-705273 Description| Value ---|--- Affected Website:| oman-4.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden until...

tourismoman.com.au XSS vulnerability

Open Bug Bounty ID: OBB-453670 Description| Value ---|--- Affected Website:| tourismoman.com.au Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

landrover-oman.com XSS vulnerability

Open Bug Bounty ID: OBB-444370 Description| Value ---|--- Affected Website:| landrover-oman.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Chea...

oman.ourshopee.com XSS vulnerability

Vulnerable URL: http://www.oman.ourshopee.com/search-results/?searchvalue=%27%22%3E%3Csvg%2Fonload%3Dprompt%2FOPENBUGBOUNTY%2F%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP websi...

tourofoman.om XSS vulnerability

Vulnerable URL: http://tourofoman.om/2011/teamlist.php?id=6'" Details: Description| Value ---|--- Patched:| Yes, at 30.06.2017 Latest check for patch:| 30.06.2017 03:18 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 11676915 VIP website status:| No Check...

CVE-2014-6788

The Oman News aka com.oman.news.rmtzlnbuooordciw application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Design/Logic Flaw

The Oman News aka com.oman.news.rmtzlnbuooordciw application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-6788

The Oman News aka com.oman.news.rmtzlnbuooordciw application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-6788

The CVE 2014-6788 entry refers to the Android app “The Oman News” (com.oman.news.rmtzlnbuooordciw) v1.0, which does not verify X.509 certificates from SSL servers, enabling MITM via a crafted certificate. This is the root cause across the provided records, leading to potential disclosure of sensi...

Google Oman domain hijacked by Moroccan Hackers

Google's Oman domain was reportedly defaced today due to a hijacking of the company's local domain name by by Moroccan Hackers. The credit being taken by "SQLMaster And Z0mbi3Ma" serial website defacers. It seems that hackers successfully beached into Oman Telecommunication Company, who is domain...

Google Oman domain hijacked by Moroccan Hackers

Google’s Oman domain was reportedly defaced today due to a hijacking of the company’s local domain name by by Moroccan Hackers. The credit being taken by “SQLMaster And Z0mbi3Ma” serial website defacers. It seems that hackers successfully beached into Oman Telecommunication Company, who is domain...