EUVD-2012-3503

Malware in sbrugna...

EUVD-2023-38257

Malicious code in bioql PyPI...

EUVD-2021-31051

Malicious code in bioql PyPI...

EUVD-2024-25917

Malicious code in bioql PyPI...

CVE-2024-12204 Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization

The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in the class-cx-rest.php file in all versions up to, and including, 1.3.5. This makes it...

New CHAVECLOAK Banking Trojan Targets Brazilians via Malicious PDFs

By Deeba Ahmed The CHAVECLOAK banking Trojan employs PDFs, ZIP downloads, DLL sideloading, and deceptive pop-ups to target Brazil's unsuspecting banking users financial sector. This is a post from HackRead.com Read the original post: New CHAVECLOAK Banking Trojan Targets Brazilians via Malicious...

CVE-2023-6210

When an https: web page created a pop-up from a "javascript:" URL, that pop-up was incorrectly allowed to load blockable content such as iframes from insecure http: URLs This vulnerability affects Firefox 120...

CVE-2023-6210

When an https: web page created a pop-up from a "javascript:" URL, that pop-up was incorrectly allowed to load blockable content such as iframes from insecure http: URLs This vulnerability affects Firefox 120...

CVE-2023-6210

When an https: web page created a pop-up from a "javascript:" URL, that pop-up was incorrectly allowed to load blockable content such as iframes from insecure http: URLs This vulnerability affects Firefox 120...

Crashing iPhones with a Flipper Zero

The Flipper Zero is an incredibly versatile hacking device. Now it can be used to crash iPhones in its vicinity by sending them a never-ending stream of pop-ups. These types of hacks have been possible for decades, but they require special equipment and a fair amount of expertise. The capabilitie...

YouTube Takes on Ad Blockers with Warning Pop-Ups

By Waqas Using YouTube? You might need to disable your ad blocker or whitelist YouTube.com. This is a post from HackRead.com Read the original post: YouTube Takes on Ad Blockers with Warning Pop-Ups...

EyesOfNetwork SQL Injection Vulnerability

EyesOfNetwork EON is an open source, free IT monitoring solution from the EyesOfNetwork community. The solution provides features such as a business process configuration tool, generating pop-up windows when events occur in the active queue, and more. EyesOfNetwork EON 5.3.11 and prior versions...

HUAWEI EMUI/Magic UI 安全漏洞

Huawei Emui is a mobile operating system developed on Android. magic Ui is a mobile operating system developed on Android. Huawei Emui and Magic UI third-party pop-up override vulnerability can be exploited by attackers to cause system pop-ups to be overridden, thereby misleading users into...

Tech support scam campaign targets Japanese visitors to PornHub

The Malwarebytes Threat Intelligence team has identified a malvertising campaign targeting Japanese users. The campaign they discovered was found to be using a cloaking technique to lure visitors of popular adult site PornHub to a decoy site at the domain mixhd.club. Cloaking Cloaking is a method...

pixiv: XSS Reflected at https://sketch.pixiv.net/ Via `next_url`

Hi, I Found XSS Reflected at https://sketch.pixiv.net/ Via Success URL Follow Me : Steps : 1. Open the URL below: https://sketch.pixiv.net/resignrequest/success?nexturl=javascript%3Aalert%2F%2Fdocument.domain 2. Pop ups appear : Impact If an attacker can control a script that is executed in the...

CVE-2021-44201

Cross-site scripting XSS was possible in notification pop-ups. The following products are affected: Acronis Cyber Protect 15 Windows, Linux before build 28035...

Cross site scripting

Cross-site scripting XSS was possible in notification pop-ups. The following products are affected: Acronis Cyber Protect 15 Windows, Linux before build 28035...

CVE-2021-44201 Cross-site scripting (XSS) was possible in notification pop-ups

Cross-site scripting XSS was possible in notification pop-ups. The following products are affected: Acronis Cyber Protect 15 Windows, Linux before build 28035...

CVE-2021-44201

CVE-2021-44201 affects Acronis Cyber Protect 15 (Windows, Linux) before build 28035. The vulnerability is a cross-site scripting (XSS) in notification pop-ups caused by failing to validate user input data, enabling potential client-side code execution. Per the connected records, the issue is netw...

Ad-blocker Chrome extension AllBlock injected ads in Google searches

By Deeba Ahmed AllBlock was available on Google Chrome's Web Store where it is marketed as a potent Ad Blocker focusing on Facebook and YouTube to prevent pop-ups. This is a post from HackRead.com Read the original post: Ad-blocker Chrome extension AllBlock injected ads in Google searches...