NAME__________CodeAstro POS System file uploadPlatforms Affected:CodeAstro POS System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CodeAstro POS System could allow a remote authenticated attacker...
NAME__________Tongda OA SQL injectionPlatforms Affected:Beijing Tongda Xinke Technology Tongda OA 11.10Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Tongda OA is vulnerable to SQL injection....
NAME__________Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium, and Cobalt Share code executionPlatforms Affected:Ashlar-Vellum Cobalt 1204.77 Ashlar-Vellum Graphite 13.0.48 Ashlar-Vellum Xenon 1204.77...
NAME__________flusity CMS file uploadPlatforms Affected:flusity CMS flusity CMSRisk Level:4.7Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________flusity CMS could allow a remote authenticated attacker...
NAME__________IDAttend IDWeb security bypassPlatforms Affected:IDAttend IDWeb 3.1.013Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________IDAttend IDWeb could allow a remote attacker to bypass security restrictions,...
NAME__________IDAttend IDWeb information disclosurePlatforms Affected:IDAttend IDWeb 3.1.013Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IDAttend IDWeb could allow a remote attacker to obtain sensitive information,...
NAME__________IDAttend IDWeb information disclosurePlatforms Affected:IDAttend IDWeb 3.1.013Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IDAttend IDWeb could allow a remote attacker to obtain sensitive information,...
NAME__________IDAttend IDWeb information disclosurePlatforms Affected:IDAttend IDWeb 3.1.013Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________IDAttend IDWeb could allow a remote attacker to obtain sensitive information,...
NAME__________Ashlar-Vellum Cobalt, Graphite, Xenon, Argon, Lithium, and Cobalt Share code executionPlatforms Affected:Ashlar-Vellum Cobalt 1204.77 Ashlar-Vellum Graphite 13.0.48 Ashlar-Vellum Xenon 1204.77...
NAME__________Netentsec NS-ASG Application Security Gateway SQL injectionPlatforms Affected:Netentsec NS-ASG Application Security Gateway 6.3Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Netentsec NS-ASG Application Security Gateway...
NAME__________SourceCodester Sticky Notes App SQL injectionPlatforms Affected:Sourcecodester Sticky Notes Apps 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SourceCodester Sticky Notes App is vulnerable to...
NAME__________phpFox code executionPlatforms Affected:phpFox phpFox 3.0.1 phpFox phpFox 3.6.0 phpFox phpFox 3.4.1 phpFox phpFox 3.5.1Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________phpFox...
NAME__________CodeAstro POS System file uploadPlatforms Affected:CodeAstro POS System 1.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________CodeAstro POS System could allow a remote authenticated attacker...
NAME__________Ruckus Cloudpath cross-site scriptingPlatforms Affected:RUCKUS Cloudpath 1.0Risk Level:7.2Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Ruckus Cloudpath is vulnerable to cross-site scripting, caused by improper validation...
NAME__________Free and Open Source Inventory Management System cross-site scriptingPlatforms Affected:Sourcecodester Free and Open Source Inventory Management System 1.0Risk Level:6.4Exploitability:UnprovenConsequences:Cross-Site Scripting...
NAME__________Vim denial of servicePlatforms Affected:Vim Vim 9.0.2067Risk Level:4Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________Vim is vulnerable to a denial of service,...
NAME__________Free and Open Source Inventory Management System security bypassPlatforms Affected:Sourcecodester Free and Open Source Inventory Management System 1.0Risk Level:5.3Exploitability:UnprovenConsequences:Bypass Security...
NAME__________Netentsec NS-ASG Application Security Gateway SQL injectionPlatforms Affected:Netentsec NS-ASG Application Security Gateway 6.3Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Netentsec NS-ASG Application Security Gateway...
The Pwn2Own Toronto 2023 hacking competition has ended with security researchers earning $1,038,500 for 58 zero-day exploits (and multiple bug...
Ransomware attacks are increasing significantly, with reports indicating that last month was a record month for ransomware attacks in 2023....
A critical vulnerability in the F5 BIG-IP configuration utility, tracked as CVE-2023-46747, allows an attacker with remote access to the...
The North Korean Lazarus hacking group repeatedly compromised a software vendor using flaws in vulnerable software despite multiple patches and warnings...
New cybersecurity rules and regulations offer security leaders a great opportunity to elevate their role at their organizations, boosting security...
Leading CISOs have offered best practices for security leaders on how to manage cyber risks effectively during the ISC2 Security...
