Lucene search
K

107 matches found

CISA
CISA
added 2023/11/14 12:0 p.m.4 views

CISA Releases Roadmap for Artificial Intelligence Adoption

Today, CISA released its Roadmap for Artificial Intelligence—in alignment with White House Executive Order 14110: Safe, Secure, And Trustworthy Development and Use of Artificial Intelligence—to outline a comprehensive set of actions CISA will take along five lines of effort: 1. Responsibly use AI...

7.2AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/09/29 12:0 a.m.15 views

Apache Subversion Client SEoL (1.9.x)

According to its version, Apache Subversion Client is 1.9.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL...

5.5AI score
Exploits0References2
Openbugbounty
Openbugbounty
added 2023/09/07 8:7 p.m.9 views

roadmaptogenius.com Cross Site Scripting vulnerability OBB-3654816

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
HackRead
HackRead
added 2023/08/21 6:13 p.m.16 views

Ultimate New Hire Onboarding Checklist: Your Roadmap to Success

By Owais Sultan Onboarding new hires is not as simple as saying, "Welcome Aboard!" You have to navigate this tricky process… This is a post from HackRead.com Read the original post: Ultimate New Hire Onboarding Checklist: Your Roadmap to Success...

7AI score
Exploits0
Kitploit
Kitploit
added 2023/08/06 12:30 p.m.47 views

AiCEF - An AI-assisted cyber exercise content generation framework using named entity recognition

AiCEF is a tool implementing the accompanying framework 1 in order to harness the intelligence that is available from online resources, as well as threat groups' activities, arsenal eg. MITRE, to create relevant and timely cybersecurity exercise content. This way, we abstract the events from the...

6.9AI score
Exploits0References6
Malwarebytes
Malwarebytes
added 2023/08/01 11:30 a.m.20 views

Public companies must now disclose breaches within 4 days

Public organisations in the US impacted by a cyberattack will now have to disclose it within four days…with some caveats attached. On Wednesday, new rules were approved by the US Securities and Exchange Commission SEC. These rules mean that publicly traded companies will need to reveal said attac...

6.7AI score
Exploits0
Talos Blog
Talos Blog
added 2023/07/20 6:0 p.m.36 views

The federal government’s cybersecurity policies are falling into place just in time to be stalled again

Welcome to this weeks edition of the Threat Source newsletter. Last week, the Biden administration released its formal roadmap for its national cybersecurity initiative meant to encourage greater investment in cybersecurity and strengthen the U.S.s critical infrastructure security and more. The...

6.8CVSS7.8AI score0.18185EPSS
Exploits0
CISA
CISA
added 2023/04/13 12:0 p.m.4 views

Shifting the Balance of Cybersecurity Risk: Security-by-Design and Default Principles

Shifting the Balance of Cybersecurity Risk: Security-by-Design and Default Principles serves as a cybersecurity roadmap for manufacturers of technology and associated products. With recommendations in this guide, manufacturers are urged to put cybersecurity first, during the design phase of a...

7.1AI score
Exploits0References4
Filippo.io
Filippo.io
added 2022/10/26 1:35 a.m.18 views

The Reciprocal Value of Access to Maintainers

Last May I left Google to build a more sustainable model for Open Source maintenance. After a summer break, I resumed my maintenance work on the Go project in September, and I started offering my services to companies that rely on Go. My vision is that of Open Source maintenance as a real...

6.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/06 5:19 p.m.41 views

NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

The U.S. Department of Commerce's National Institute of Standards and Technology NIST has chosen the first set of quantum-resistant encryption algorithms that are designed to "withstand the assault of a future quantum computer." The post-quantum cryptography PQC technologies include the...

Exploits0
Kitploit
Kitploit
added 2022/04/17 12:30 p.m.315 views

OWASP Coraza WAF - A Golang Modsecurity Compatible Web Application Firewall Library

Welcome to OWASP Coraza Web Application Firewall, OWASP Coraza is a golang enterprise-grade Web Application Firewall framework that supports Modsecurity's seclang language and is 100% compatible with OWASP Core Ruleset. Prerequisites Linux distribution Debian and Centos are recommended, Windows i...

7.4AI score
Exploits0References9
CNVD
CNVD
added 2022/01/05 12:0 a.m.16 views

Dmp Roadmap Cross-Site Scripting Vulnerability

Dmp Roadmap is a data management planning tool. a cross-site scripting vulnerability exists in Dmp Roadmap, which stems from the DMP roadmap prior to 3.0.4 and allows XSS. an attacker could exploit this vulnerability to execute client-side code...

6.1CVSS2.5AI score0.00893EPSS
Exploits0References1
NVD
NVD
added 2022/01/01 11:15 p.m.20 views

CVE-2021-44896

DMP Roadmap before 3.0.4 allows XSS...

6.1CVSS0.00893EPSS
Exploits0References3
OSV
OSV
added 2022/01/01 11:15 p.m.17 views

CVE-2021-44896

DMP Roadmap before 3.0.4 allows XSS...

6.1CVSS6.9AI score
Exploits0References3
Prion
Prion
added 2022/01/01 11:15 p.m.16 views

Cross site scripting

DMP Roadmap before 3.0.4 allows XSS...

4.3CVSS6.3AI score0.00893EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/01/01 10:45 p.m.21 views

CVE-2021-44896

DMP Roadmap before 3.0.4 allows XSS...

6.5AI score0.00893EPSS
Exploits0References3
CVE
CVE
added 2022/01/01 10:45 p.m.42 views

CVE-2021-44896

DMP Roadmap vulnerability CVE-2021-44896 concerns XSS in DMP Roadmap prior to version 3.0.4. The affected software is DMP Roadmap (data management planning tool). The root cause is an XSS flaw present before 3.0.4, with no explicit exploitation details in the provided documents. Impact is describ...

6.1CVSS6.2AI score0.00893EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2022/01/01 12:0 a.m.4 views

Dmp Roadmap 跨站脚本漏洞

Dmp Roadmap is a data management planning tool. a cross-site scripting vulnerability exists in Dmp Roadmap, which stems from the DMP roadmap prior to 3.0.4 and allows XSS. an attacker could exploit this vulnerability to execute client-side code...

6.1CVSS5.3AI score0.00893EPSS
Exploits0References4
SonarSource Blog
SonarSource Blog
added 2021/09/14 12:0 a.m.8 views

Product portals open: we want your input

SonarSource was born from open source software and most of what we do remains FLOSS, so openness and transparency have always been fundamental principles. With a recent change in how we approach product management, we've gone even further. We've recently opened up product portals on Productboard...

Exploits0
Kitploit
Kitploit
added 2021/09/11 8:30 p.m.45 views

Pollenisator - Collaborative Pentest Tool With Highly Customizable Tools

Pollenisator is a tool aiming to assist pentesters and auditor automating the use of some tools/scripts and keep track of them. Written in python 3 Provides a modelisation of "pentest objects" : Scope, Hosts, Ports, Commands, Tools etc. Tools/scripts are separated into 4 categories : wave,...

7.3AI score
Exploits0References3
Rows per page
Query Builder