NAME__________OpenNDS Captive Portal denial of servicePlatforms Affected:OpenNDS Captive Portal 10.1.1 OpenNDS Captive Portal 10.1.0 OpenNDS Captive Portal 9.10.0Risk Level:3.7Exploitability:UnprovenConsequences:Denial of...
NAME__________Code Projects Inventory Management SQL injectionPlatforms Affected:Code Projects Inventory Management 1.0Risk Level:3.8Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Code Projects Inventory Management is vulnerable to...
NAME__________NEC CLUSTERPRO X, NEC EXPRESSCLUSTER X, NEC CLUSTERPRO X SingleServerSafe, and NEC EXPRESSCLUSTER X SingleServerSafe command executionPlatforms Affected:NEC CLUSTERPRO X...
NAME__________MISP unspecifiedPlatforms Affected:MISP MISP 2.4.167 MISP MISP 2.4.168 MISP MISP 2.4.169 MISP MISP 2.4.171 MISP MISP 2.4.172 MISP MISP 2.4.174...
NAME__________MISP unspecifiedPlatforms Affected:MISP MISP 2.4.167 MISP MISP 2.4.168 MISP MISP 2.4.169 MISP MISP 2.4.171 MISP MISP 2.4.172 MISP MISP 2.4.174...
Russian cyber espionage actors affiliated with the Federal Security Service (FSB) have been observed using a USB propagating worm called...
An RFC on IoCs – playing our part in international standards In August 2023, the IETF published the document Indicators...
The British Library confirmed that a ransomware attack is behind a major outage that is still affecting services across several...
Google's Threat Analysis Group (TAG) has discovered that threat actors exploited a zero-day vulnerability in Zimbra Collaboration email server to steal sensitive...
Image: Bloomberg Crypto The official Twitter account for Bloomberg Crypto was used earlier today to redirect users to a deceptive...
Ransomware gangs target exposed Citrix Netscaler devices using a publicly available exploit to breach large organizations, steal data, and encrypt...
The U.S. Cybersecurity & Infrastructure Security Agency has added to its catalog of known exploited vulnerabilities (KEV) three security issues...
Yamaha Motor's Philippines motorcycle manufacturing subsidiary was hit by a ransomware attack last month, resulting in the theft and leak...
The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have released a detailed cybersecurity advisory on the sophisticated Scattered...
One of the world’s largest libraries has confirmed it was hit by a ransomware attack on October 28, and that...
Royal Mail has revealed a multimillion-pound cost attached to a serious ransomware breach it suffered earlier this year.The British postal...
involving the spoofing of luxury brands, including Louis Vuitton, Rolex, and Ray-Ban.The hackers craft enticing emails promising heavy discounts on...
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Info1e -- platformThe 1E-Exchange-URLResponseTime instruction that is part of the Network product...
LTESniffer is An Open-source LTE Downlink/Uplink Eavesdropper It first decodes the Physical Downlink Control Channel (PDCCH) to obtain the Downlink...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'maskedpersian'Link to Submitters Profile:https://hackerone.com/b'maskedpersian' Report Title:b'Full account takeover of...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'r00tdaddy'Link to Submitters Profile:https://hackerone.com/b'r00tdaddy' Report Title:b'XSS in Cisco Endpoint'Report...
Company Name: b'U.S. Dept Of Defense' Company HackerOne URL: https://hackerone.com/deptofdefense Submitted By:b'r00tdaddy'Link to Submitters Profile:https://hackerone.com/b'r00tdaddy' Report Title:b'Unathenticated file read (CVE-2020-3452)...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added three security flaws to its Known Exploited Vulnerabilities (KEV)...
An unknown threat actor has been observed publishing typosquat packages to the Python Package Index (PyPI) repository for nearly six...
