PHPJabbers Cleaning Business Software Cross-Site Scripting Vulnerability

PHPJabbers Cleaning Business Software is a cleaning reservation software from PHPJabbers Serbia. PHPJabbers Cleaning Business Software suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to perform cross-site scripting attacks...

Time Slots Booking Calendar Security Breach

PHPJabbers Time Slots Booking Calendar is a booking system from PHPJabbers Serbia. A security vulnerability exists in Time Slots Booking Calendar version 4.0, which stems from a CSV injection vulnerability in the ID field...

TEM Opera Plus FM Family Transmitter 35.45 XSRF

Summary This new line of Opera plus FM Transmitters combines very high efficiency, high reliability and low energy consumption in compact solutions. They have innovative functions and features that can eliminate the costs required by additional equipment: automatic exchange of audio sources,...

TEM Opera Plus FM Family Transmitter 35.45 Remote Code Execution

Summary This new line of Opera plus FM Transmitters combines very high efficiency, high reliability and low energy consumption in compact solutions. They have innovative functions and features that can eliminate the costs required by additional equipment: automatic exchange of audio sources,...

Researchers Expose Space Pirates' Cyber Campaign Across Russia and Serbia

The threat actor known as Space Pirates has been linked to attacks against at least 16 organizations in Russia and Serbia over the past year by employing novel tactics and adding new cyber weapons to its arsenal. "The cybercriminals' main goals are still espionage and theft of confidential...

A Deep Dive into Space Pirates’ Unconventional Cyber Arsenal

Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary Space Pirates have been a persistent digital threat since 2017, relentlessly targeting over 16 organizations in Russia and one in Serbia. Despite retaining its core methods, this infamous group continuous...

serbia-energy.eu Cross Site Scripting vulnerability OBB-3378108

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Europol Busts Crypto Fraud Call Centers

By Deeba Ahmed The operation took place all over Europe including Serbia, Bulgaria, Germany, and Cyprus. This is a post from HackRead.com Read the original post: Europol Busts Crypto Fraud Call Centers...

serbia-football.com Cross Site Scripting vulnerability OBB-2763107

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers

Citizen Lab published another report on the spyware used against two Egyptian nationals. One was hacked by NSO Groups Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox. We havent heard a lot about Cytrox and its Predator...

jp.serbia.travel Cross Site Scripting vulnerability OBB-2143071

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Phpjabbers Appointment Scheduler Cross-Site Scripting Vulnerability

Phpjabbers Appointment Scheduler is a Php-based appointment scheduler plugin for planning time and scheduling meetings from Phpjabbers Serbia. PHPJabbers Appointment Scheduler 2.3 is vulnerable to a cross-site scripting vulnerability that originates in the index.php administrative login page with...

serbiacreates.gov.rs Cross Site Scripting vulnerability OBB-1248173

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

serbiacreates.gov.rs Cross Site Scripting vulnerability OBB-1239933

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Silverlight DateTime parsing for Norway and Serbia

Silverlight DateTime parsing for Norway and Serbia About this update This update for Microsoft Silverlight supports using the same separator for date and time and for using a separator at the end of the date in DateTime parsing. How to get this update Method 1: Microsoft Silverlight site The...

NIP Kompanija Novosti A.D. Serbia Web Design 1.0 SQL Injection

Exploit Title : NIP Kompanija "Novosti" A.D. Serbia Web Design 1.0 SQL Injection Author Discovered By : KingSkrupellos Date : 30/12/2018 Vendor Homepage : novosti.rs Tested On : Windows Category : WebApps Exploit Risk : Medium Version Information : V1.0 - Nginx 1.7.6 - PHP 5.3.28 jQuery 1.8.3 -...

serbia.gdi.net XSS vulnerability

Open Bug Bounty ID: OBB-656454 Description| Value ---|--- Affected Website:| serbia.gdi.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

This Week in Security News: Hackers and Cyber Attackers

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, Chili’s parent company – Brinker International – announced that consumer credit and debit card information had been compromised at some...

DDoS-for-Hire Service Webstresser Dismantled

Authorities in the U.S., U.K. and the Netherlands on Tuesday took down popular online attack-for-hire service WebStresser.org and arrested its alleged administrators. Investigators say that prior to the takedown, the service had more than 136,000 registered users and was responsible for launching...

eurobasket.com XSS vulnerability

Vulnerable URL: http://www.eurobasket.com/Serbia/basketball.asp?women=1"...