CISA and Partners Release Advisory Update on Akira Ransomware

Today, Cybersecurity and Infrastructure Security Agency CISA, in collaboration with the Federal Bureau of Investigation, Department of Defense Cyber Crime Center, Department of Health and Human Services, and international partners, released an updated joint Cybersecurity Advisory, StopRansomware:...

Friday Squid Blogging: Two-Man Giant Squid

The Brooklyn indie art-punk group, Two-Man Giant Squid, just released a new album. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered...

MAL-2024-2229 Malicious code in down_load_epub_bindle_punk_bruja_q4lej5 (npm)

--- -= Per source details. Do not edit below this line.=-...

punk-gothic-shop.de Cross Site Scripting vulnerability OBB-3878388

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

IBM: jazz.net - publicly accessible .svn repositories

The vulnerability regarding publicly accessible .svn/entries files in jazz.net was reported to IBM, analyzed, and remediated. The issue was identified by an external researcher...

punk-gothic-shop.de Cross Site Scripting vulnerability OBB-3507833

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

punk-shop.com Cross Site Scripting vulnerability OBB-3451284

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

PUNK does not conform to ERC721 standard hence safeTransferFrom from solmate does not work

Lines of code Vulnerability details Impact Since protocol's intended NFT target is PUNK currently, the protocol will be hugely affected. Proof of Concept Attempts to transfer the NFT is done in 2 places. 1. removeCollateral 2. purchaseNFT Firstly, this means that once a collateral is added to the...

punk-shop.com Cross Site Scripting vulnerability OBB-2822742

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

punk-shop.com Cross Site Scripting vulnerability OBB-2819790

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

punk-gothic-versand.de Cross Site Scripting vulnerability OBB-2325571

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

punk-gothic-hell.de Cross Site Scripting vulnerability OBB-2323396

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

punk-shop.com Cross Site Scripting vulnerability OBB-1378662

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Joomla Extra Search 2.2.8 SQL Injection

Exploit Title : Joomla comextrasearch SQL injection Vulnerability Exploit Author : howucan Website : http://howucan.gr Dork : inurl:/index.php?option=comextrasearch establename Software link : http://www.joomlaboat.com/extra-search Software version : 2.2.8 video : http://adf.ly/1cmGen Tested on:...

Insky CMS 006-0111 Remote File Inclusion

============================================================== Insky CMS v006-0111 Multiple Remote File Include Vulnerability ============================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, ...