36 matches found
CVE-2019-20070
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...
EUVD-2009-3797
Malware in sbrugna...
EUVD-2020-20195
Malware in sbrugna...
EUVD-2002-2213
Malware in sbrugna...
CVE-2020-27691
The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 allows XSS via URLBlocking Settings, SNMP Settings, and System Log Settings...
CVE-2002-2234
NetScreen ScreenOS before 4.0.1 allows remote attackers to bypass the Malicious-URL blocking feature by splitting the URL into fragmented IP requests...
ROS-20240815-14
A vulnerability in the urllib.parse component of the Python programming language interpreter is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely, bypass URL blocking starting with empty characters...
ROS-20240409-01
A vulnerability in the urllib.parse component of the Python programming language interpreter is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely, bypass URL blocking starting with empty characters A vulnerability in the Python...
How to block specific URL request with rewrite policy in NetScaler
This article describes how to configure rewrite policy to drop specific URL request to NetScaler Load Balancing Virtual Server traffic...
SUSE CVE-2009-3826
Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to 1 the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and 2 a redirect URL that contains information about the originally...
How to Develop a SOAR Workflow to Automate a Critical Daily Task
As the senior information security engineer at Brooks, an international running shoe and apparel company, I can appreciate the challenge of launching a security orchestration, automation, and response SOAR tool for the first time as well as investing your time and budget into making a new securit...
360 Security Browser suffers from dll hijacking vulnerability
360 Safe Browser adopts advanced malicious URL blocking technology, which can automatically block malicious URLs such as piracy, fraud, and Internet banking imitation. 360 Secure Browser has a dll hijacking vulnerability, which can be exploited by attackers to cause the user's computer to be...
Cross site scripting
The Relish Verve Connect VH510 device with firmware before 1.0.1.6L0516 allows XSS via URLBlocking Settings, SNMP Settings, and System Log Settings...
CVE-2019-20070
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...
Design/Logic Flaw
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...
Teaming up in the war on tech support scams
Editors note: Erik Wahlstrom spoke about the far-reaching impact of tech support scams and the need for industry-wide cooperation in his RSA Conference 2018 talk Tech Scams: Its Time to Release the Hounds. Social engineering attacks like tech support scams are so common because theyre so effectiv...
How to block MAM URL access through Browser
Accessing the MAM URL directly through browser prompts the users to enter their AD Credentials. It acts as a tool for users to validate their credentials Username/Password. Some might treat this as a Security Violation. This article helps you to restrict the Browser access to MAM URL NetScaler...
[SECURITY] Fedora 23 Update: squidGuard-1.4-26.fc23
squidGuard can be used to - limit the web access for some users to a list of accepted/well known web servers and/or URLs only. - block access to some listed or blacklisted web servers and/or URLs for some users. - block access to URLs matching a list of regular expressions or words for some users...
[SECURITY] Fedora 22 Update: squidGuard-1.4-26.fc22
squidGuard can be used to - limit the web access for some users to a list of accepted/well known web servers and/or URLs only. - block access to some listed or blacklisted web servers and/or URLs for some users. - block access to URLs matching a list of regular expressions or words for some users...
Router ONO Hitron CDE-30364 - CSRF Vulnerability
No description provided by source. Exploit Title: Router ONO Hitron CDE-30364 - CSRF Vulnerability Date: 14-9-2013 Exploit Author: Matias Mingorance Svensson - matias.msatowasp.org Vendor Homepage: http://www.ono.es/clientes/te-ayudamos/dudas/internet/equipos/hitron/hitron-cde-30364/ Tested on:...