CVE-2025-34328

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23 include a web administration component F2MAdmin that exposes an unauthenticated script-management endpoint at AudioCodesfiles/utils/IVR/diagram/ajaxScript.php. The saveScript action writes attacker-supplie...

AudioCodes Fax Server 安全漏洞

AudioCodes Fax Server is a fax server from AudioCodes Israel. A security vulnerability exists in AudioCodes Fax Server version 2.6.23 and earlier, which originates from an unauthenticated script management endpoint and could lead to arbitrary file writing and execution...

PT-2025-47477

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23 include a web administration component F2MAdmin that exposes an unauthenticated script-management endpoint at AudioCodes files/utils/IVR/diagram/ajaxScript.php. The saveScript action writes attacker-suppli...

The vulnerability of the software component responsible for creating, monitoring, and orchestrating data processing scripts in Airflow allows attackers to circumvent existing access restrictions and execute API requests without authentication.

The vulnerability of the software component responsible for creating, monitoring, and orchestrating data processing scripts in Airflow is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass existing access restrictions and execut...

How to Verify Adaptive Acceleration Features are Working on Browser

As we know, Adaptive Acceleration's umbrella consists of the below features: 1. Automatic Push/Preconnect 2. Resource Optimizer 3. Automatic Font Preload 4. Script Management To read more about these features, please refer to Akamai Community. Now let's see how we can validate if these features a...

POC-T

This is a Python-based penetration testing framework called POC-T. It is designed to facilitate concurrent testing of multiple targets and supports various features such as multi-threading, URL parsing, and user agent management. The framework includes a range of scripts for testing different...

Alleviating Digital Transformation Performance and Security Concerns

Businesses across the world are migrating applications to the cloud to reduce IT cost and complexity, and accelerate the pace of innovation. But when you move applications and services to the cloud you lose visibility and control over your infrastructure, increasing risk and uncertainty. That's w...

ACE - Automated, Collection, and Enrichment Platform

The Automated Collection and Enrichment ACE platform is a suite of tools for threat hunters to collect data from many endpoints in a network and automatically enrich the data. The data is collected by running scripts on each computer without installing any software on the target. ACE supports...

The Automated Collection and Enrichment Platform: ACE

The Automated Collection and Enrichment ACE platform is a suite of tools for threat hunters to collect data from many endpoints in a network and automatically enrich the data. The data is collected by running scripts on each computer without installing any software on the target. ACE supports...

mailx security update

CentOS Errata and Security Advisory CESA-2014:1999 Updated mailx packages that fix two security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores,...