36 matches found
Cyber-Guide
!Typing SVGhttps://readme-typing-svg.herokuapp.com?font=Fira...
WordPress EventON plugin < 2.2.17 - Admin+ Stored XSS vulnerability
Admin+ Stored XSS vulnerability discovered by Wesley "dk4trin" Santos in WordPress Plugin EventON versions 2.2.17...
emdns 安全漏洞
emdns is a DNS software by the individual developer Michael Santos. A security vulnerability exists in versions prior to emdns be565c3, which stems from emdnsresolveraw in emdns.c calling strlen via fbd1eef, whose input may not terminate with a termination, resulting in an over-read of a...
santos-marquage33.fr Cross Site Scripting vulnerability OBB-3654417
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
How a Catholic Group Doxed Gay Priests
Plus: A data breach exposes Washington, Ring camera footage has a new problem, and the George Santos scandal slips into the world of cybercrime...
ZKSecurity BIO 4.1.2 SQL Injection / Code Execution Vulnerabilities
ADVISORY INFORMATION Product: ZKSecurity BIO Vendor: ZKTeco https://www.zkteco.com/en/ZKBiosecurity/ZKBioSecurityV50004.1.2 Version Affected: 4.1.2 CVE: CVE-2022-36635 Vulnerability: SQL Injection with a plus: RCE CREDIT This vulnerability was discovered and researched by Caio Burgardt and Silton...
aluno.colegiojeanpiagetdesantos.com.br Cross Site Scripting vulnerability OBB-2815804
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Phoenix Contact Classic Line Industrial Controllers
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Phoenix Contact Equipment: ILC 131 ETH, ILC 131 ETH/XC, ILC 151 ETH, ILC 151 ETH/XC, ILC 171 ETH 2TX, ILC 191 ETH 2TX, ILC 191 ME/AN, and AXC 1050 Vulnerability: Missing Authentication for Critical...
Phoenix Contact ProConOS and MULTIPROG
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Phoenix Contact Equipment: ProConOS/ProConOS eCLR and MULTIPROG Vulnerability: Insufficient Verification of Data Authenticity CISA is aware of a public report, known as “OT:ICEFALL” that details...
RaidForums Gets Raided, Alleged Admin Arrested
The U.S. Department of Justice DOJ said today it seized the website and user database for RaidForums, an extremely popular English-language cybercrime forum that sold access to more than 10 billion consumer records stolen in some of the worlds largest data breaches since 2015. The DOJ also charge...
FBI Seizes RaidForums and Arrests Alleged Founder Diogo Santos Coelho
By Waqas Diogo Santos Coelho, aka Omnipotent 21 of Portugal was arrested in the United Kingdom on January 31st, 2022,… This is a post from HackRead.com Read the original post: FBI Seizes RaidForums and Arrests Alleged Founder Diogo Santos Coelho...
iprev.santos.sp.gov.br Cross Site Scripting vulnerability OBB-2290511
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
WordPress Credova_Financial plugin <= 1.4.8 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered by Marvin Santos in WordPress CredovaFinancial plugin versions = 1.4.8. Solution Update the WordPress CredovaFinancial plugin to the latest available version at least 1.4.9...
santos-professional.de Cross Site Scripting vulnerability OBB-1433306
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Senior Rubiweb
CVE-2019-19550 ------------------------------------------...
egov1.santos.sp.gov.br XSS vulnerability
Vulnerable URL: https://egov1.santos.sp.gov.br/cgi-bin/do0104/ksearch.cgi?terms=d=Nome+de+Arquivo=5%22%3E%3Csvg/onload=alert%28/xssposed/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 09:55 GMT Vulnerability type:| XSS Vulnerability...
Threat Outbreak Alert RuleID17826: Email Messages Distributing Malicious Software on September 8, 2015
Medium Alert ID: 40886 First Published: 2015 September 8 13:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID17826 may contain the following files: Name |...
Joomla! Component com_docman - Multiple Vulnerabilities
Joomla! Component comdocman - Multiple Vulnerabilities Joomla docman Component 'comdocman' Full Path DisclosureFPD & Local File Disclosure/IncludeLFD/LFI CWE: CWE-200FPD CWE-98LFI/LFD Risk: High Author: Hugo Santiago dos Santos Contact: [email protected] Date: 13/07/2015 Vendor Homepage:...
Joomla Docman Path Disclosure / Local File Inclusion Vulnerabilities
Joomla Docman suffers from full path disclosure and local file inclusion vulnerabilities. Joomla docman Component 'comdocman' Full Path DisclosureFPD & Local File Disclosure/IncludeLFD/LFI CWE: CWE-200FPD CWE-98LFI/LFD Risk: High Author: Hugo Santiago dos Santos Contact: email protected Date:...
Joomla Docman Path Disclosure / Local File Inclusion
Joomla docman Component 'comdocman' Full Path DisclosureFPD & Local File Disclosure/IncludeLFD/LFI CWE: CWE-200FPD CWE-98LFI/LFD Risk: High Author: Hugo Santiago dos Santos Contact: [email protected] Date: 13/07/2015 Vendor Homepage:...