EUVD-2021-17164

Malware in sbrugna...

EUVD-2025-16599

Malicious code in bioql PyPI...

CVE-2018-16499

In VOS compromised, an attacker at network endpoints can possibly view communications between an unsuspecting user and the service using man-in-the-middle attacks. Usage of unapproved SSH encryption protocols or cipher suites also violates the Data Protection TSR Technical Security Requirements...

AppSec Webinar: How to Turn Developers into Security Champions

Let's face it: AppSec and developers often feel like they're on opposing teams. You're battling endless vulnerabilities while they just want to ship code. Sound familiar? It's a common challenge, but there is a solution. Ever wish they proactively cared about security? The answer lies in a proven...

coolmathgameskids.com Cross Site Scripting vulnerability OBB-3932228

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Apache Log4j Remote Code Execution Vulnerability

Certain versions of Apache Log4j2 are vulnerable to a remote code execution vulnerability. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. Microsoft is not aware of any impact to th...

Micro Focus GroupWise Cross Site Scripting / Overflows

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: Micro Focus GroupWise vulnerable version: GroupWise 2014 R2 =SP1 GroupWise 2014 unsupported versions may be affected fixed version:...

Microsoft Internet Explorer 中心元素远程代码执行漏洞 (MS12-037)

CVE ID: CVE-2012-1523 Microsoft Internet Explorer是微软公司推出的一款网页浏览器。 Microsoft Internet Explorer 访问已经删除的对象时存在远程代码执行漏洞。攻击者可利用当前用户权限执行任意代码以破坏内存。 0 Microsoft Internet Explorer 9.x Microsoft Internet Explorer 8.x Microsoft Internet Explorer 7.x Microsoft Internet Explorer 6.x 临时解决方法：...

Infiltrate 2011 - Information security Event !

Infiltrate is a deep technical security conference that will focus entirely on offensive technical issues. It will be the single-most important event for those who are focused on the technical aspects of offensive security issues. No policy or high-level presentations, just hard-core thought...

Heap Offset Overflow in Citrix ICA Clients

===============================ADVISORY=============================== Systems Affected: Citrix ICA Client Severity: High Category: Heap Offset Overflow Author: Context Information Security Ltd Reported to vendor: 20th February 2008 Advisory Issued: 4th August 2010...

RFC2196

Network Working Group B. Fraser Request for Comments: 2196 Editor FYI: 8 SEI/CMU Obsoletes: 1244 September 1997 Category: Informational Site Security Handbook Status of this Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind...