EUVD-2010-3903

Malware in sbrugna...

EUVD-2022-35819

Malicious code in bioql PyPI...

EUVD-2024-44337

Malicious code in bioql PyPI...

CVE-2025-27457

All communication between the VNC server and clients is unencrypted. This allows an attacker to intercept the traffic and obtain sensitive data...

PT-2025-22641 · Unknown · Nexus Series +2

Name of the Vulnerable Software and Affected Versions: ASPECT-Enterprise versions through 3. NEXUS Series versions through 3. MATRIX Series versions through 3. Description: The issue is related to Stored Absolute Path Traversal vulnerabilities in ASPECT, which could expose sensitive data if...

Product Walkthrough: How Satori Secures Sensitive Data From Production to AI

Every week seems to bring news of another data breach, and it's no surprise why: securing sensitive data has become harder than ever. And it's not just because companies are dealing with orders of magnitude more data. Data flows and user roles are constantly shifting, and data is stored across...

CVE-2024-54476

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, macOS Sonoma 14.7.2, macOS Ventura 13.7.2. An app may be able to access user-sensitive data...

Siemens SCALANCE M-800 Missing Encryption of Sensitive Data (CVE-2023-28450)

An issue was discovered in Dnsmasq before 2.90. The default maximum EDNS.0 UDP packet size was set to 4096 but should be 1232 because of DNS Flag Day 2020. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...

VPN for Privacy: Shielding Your Online Activities from Prying Eyes

By Waqas Protect your online privacy with trustworthy VPNs. Shield your sensitive data from prying eyes and browse the internet… This is a post from HackRead.com Read the original post: VPN for Privacy: Shielding Your Online Activities from Prying Eyes...

The 5-Question Test to Assess Your Readiness to Manage Insider Threats

An insider threat is a cyber security risk that originates from within any organization that is being targeted by attackers. Often, insider threats involve a current or former employee, or business associate, who has access to sensitive information or privileged accounts, and who misuses this...

Weak Password Vulnerability in Various Gateways of Mapleton Technology Co.

Mapletree Technology Co., Ltd. is a leading provider of network products and solutions in China. A weak password vulnerability exists in a number of MyPlus Technology's gateways, which can be exploited by an attacker to log in to the backend and obtain sensitive information...

Knight CMS suffers from SQL injection vulnerability (CNVD-2021-09683)

Knight CMS is based on PHP + MYSQL as the core development of a set of free + open source professional recruitment system. Knight CMS has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

Eclime 1.1.2b - Multiple Vulnerabilities

Vulnerability ID: HTB22705 Reference: http://www.htbridge.ch/advisory/sqlinjectionineclime1.html Product: Eclime Vendor: www.eclime.com http://www.eclime.com/ Vulnerable Version: 1.1.2b Vendor Notification: 16 November 2010 Vulnerability Type: SQL Injection Status: Not Fixed, Vendor Alerted,...

CVE-2000-0220

ZoneAlarm sends sensitive system and network information in cleartext to the Zone Labs server if a user requests more information about an event...

icsa.certified.weak.crypto.txt

Date: Thu, 27 May 1999 00:24:26 -0700 From: Lucky Green To: [email protected] Subject: ICSA certifies weak crypto as secure I am becoming concerned about the apparent lack of professional competence within even well-known segments of the security community. I hope the incident I discovered is ...