20 matches found
EUVD-2021-10810
Malware in sbrugna...
CVE-2021-23884
Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter CSR prior to 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway MWG or the password of the McAfee Web Gateway Cloud Server MWGCS read on...
CVE-2021-23884
Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter CSR prior to 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway MWG or the password of the McAfee Web Gateway Cloud Server MWGCS read on...
CVE-2021-23884
CVE-2021-23884 affects the ePO Extension of McAfee Content Security Reporter (CSR). The issue stems from cleartext transmission that lets an ePO administrator view unencrypted credentials (MWG or MWGCS read-only user used for log retrieval). Affected: CSR versions prior to 2.8.0. Mitigation: upgr...
CVE-2021-23884 Clear text exposure of password in McAfee CSR ePO extension
Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter CSR prior to 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway MWG or the password of the McAfee Web Gateway Cloud Server MWGCS read on...
迈克菲 McAfee Content Security Reporter 安全漏洞
McAfee Content Security Reporter is an application from McAfee, Inc. A reporting software solution that helps you identify and analyze a variety of data collected from network devices. A security vulnerability exists in McAfee Content Security Reporter CSR prior to version 2.8.0, which stems from...
ybhaber.com XSS vulnerability
Open Bug Bounty ID: OBB-719915 Description| Value ---|--- Affected Website:| ybhaber.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden unti...
couturejewellery.com XSS vulnerability
Open Bug Bounty ID: OBB-718512 Description| Value ---|--- Affected Website:| couturejewellery.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:|...
177.190.254.18 XSS vulnerability
Open Bug Bounty ID: OBB-670399 Description| Value ---|--- Affected Website:| 177.190.254.18 Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
campaigndropbox.com XSS vulnerability
Open Bug Bounty ID: OBB-587381 Description| Value ---|--- Affected Website:| campaigndropbox.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
caldasantioquia.gov.co XSS vulnerability
Open Bug Bounty ID: OBB-554828 Description| Value ---|--- Affected Website:| caldasantioquia.gov.co Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
afhe.org XSS vulnerability
Open Bug Bounty ID: OBB-367703 Description| Value ---|--- Affected Website:| afhe.org Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
sklep.zoolandia.pl XSS vulnerability
Open Bug Bounty ID: OBB-129179 Description| Value ---|--- Affected Website:| sklep.zoolandia.pl Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Dennis Fisher On Security, Journalism, and the Origins of Threatpost
Ryan Naraine hijacks the podcast to talk with Dennis Fisher about the origins of Threatpost, his time as a security reporter, the changes in the industry, and what’s next on the horizon. Download: lastdigitalundergroundever.mp3 Music by Chris Gonsalves...
Lizard Squad's DDoS Site Runs on Hacked Home Routers
The distributed denial of service attacks that crippled both Xbox Live and the PlayStation Network PSN shortly after the holidays came at the hands of a botnet largely comprised of hacked home routers. The botnet is managed by Lizard Squad, the group of hackers that took credit for knocking the...
Cool, BlackHole Exploit Kits Created by Same Hacker
If the relatively cheap, easily available, and totally reliable Blackhole exploit kit is the Toyota Camry of exploit kits, then the Cool exploit kit is the Lexus LS: both kits are reportedly developed by the same crew, but the latter is astronomically more expensive and presumably loaded with...
A Closer Look At ATM Skimmers
Security reporter Brian Krebs goes visual with ATM skimmers, asking readers to look at images and see if they would be able to tell the difference between a real ATM card reader and actual skimming devices. Read the full article. KrebsonSecurity.com...
Secure Computing Security Reporter multiple security vulnerabilities
Authentication bypass and directory traversal...
eIQnetworks Enterprise Security Analyzer Syslog Server Detection (deprecated)
Plugin has been deprecated as the software is EOL and no longer obtainable %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid22126; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate",...
eIQnetworks Enterprise Security Analyzer License Manager Detection
The remote host is running a license manager for eIQnetworks Enterprise Security Analyzer ESA, a security information and event management application. Note that eIQnetworks Enterprise Security Analyzer is also included in third-party products such as Astaro Report Manager, Fortinet FortiReporter...