NAME__________Progress MOVEit Transfer SQL injectionPlatforms Affected:Progress MOVEit Transfer 13.0.5 Progress MOVEit Transfer 13.1.3 Progress MOVEit Transfer 14.0.3 Progress MOVEit Transfer...
NAME__________BT21 x BTS Wallpaper denial of servicePlatforms Affected:bungaakpstudio007 BT21 x BTS Wallpaper 12Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________BT21 x BTS Wallpaper...
NAME__________Glitter Unicorn Wallpaper denial of servicePlatforms Affected:bungaakpstudio007 Glitter Unicorn Wallpaper 7.0 bungaakpstudio007 Glitter Unicorn Wallpaper 8.0Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Glitter...
NAME__________Keyboard Themes directory traversalPlatforms Affected:T-ME Studios Keyboard Themes 1.275.1.164Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Keyboard Themes could allow a remote attacker to traverse...
NAME__________Advantech WebAccss/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 9.1.3Risk Level:7.2Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Advantech WebAccss/SCADA could allow a remote attacker to upload arbitrary files,...
NAME__________Splunk Enterprise cross-site scriptingPlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise 8.1.13 Splunk Cloud Platform 9.0.2303Risk...
NAME__________Splunk Enterprise security bypassPlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise 8.1.13Risk Level:3.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Splunk Enterprise...
NAME__________Advantech WebAccss/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 9.1.3Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Advantech WebAccss/SCADA could allow a remote attacker to execute arbitrary code...
NAME__________Splunk Enterprise XML external entity injectionPlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise 8.1.13Risk Level:7.7Exploitability:UnprovenConsequences:Denial of...
NAME__________Splunk Enterprise and Splunk Cloud Platform denial of servicePlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise...
NAME__________Splunk Enterprise and Splunk Cloud Platform HTTP response splittingPlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise...
NAME__________Advantech WebAccss/SCADA code executionPlatforms Affected:Advantech WebAccess/SCADA 9.1.3Risk Level:7.2Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Advantech WebAccss/SCADA could allow a remote attacker to upload arbitrary files,...
NAME__________Splunk Enterprise and Splunk Cloud Platform information disclosurePlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise 8.1.13...
NAME__________Splunk Enterprise and Splunk Cloud Platform information disclosurePlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk Enterprise 8.1.13...
NAME__________ToolJet cross-site scriptingPlatforms Affected:ToolJet ToolJet 1.11.0Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ToolJet is vulnerable to cross-site scripting, caused by improper validation of user-supplied...
NAME__________Splunk App for Lookup File Editing cross-site scriptingPlatforms Affected:Splunk App for Lookup File Editing 4.0.0Risk Level:4.7Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Splunk App for...
NAME__________Splunk App for Stream privilege escalationPlatforms Affected:Splunk App for Stream 8.1.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Splunk App for Stream could allow a...
NAME__________Splunk Enterprise Splunk Enterprise and Splunk Cloud Platform security bypassPlatforms Affected:Splunk Splunk Enterprise 9.0.4 Splunk Splunk Enterprise 8.2.10 Splunk Splunk...
It has been a fairly quiet week regarding ransomware, with only a few reports released and no new significant attacks....
State-sponsored North Korean hacker group Kimsuky (a.ka. APT43) has been impersonating journalists and academics for spear-phishing campaigns to collect intelligence from think...
Leading snowboard maker Burton Snowboards confirmed notified customers of a data breach after some of their sensitive information was "potentially"...
Google has removed from the Chrome Web Store 32 malicious extensions that could alter search results and push spam or...
Microsoft says SMB signing (aka security signatures) will be required by default for all connections to defend against NTLM relay...
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on May 25, 2023. This...
