Zyxel Vulnerability Exploited by DDoS Botnets on Linux Systems
Distributed Denial of Service (DDoS) botnets have been used to actively exploit a critical vulnerability found in Zyxel firewall models.The...
Old Roblox Data Leak Resurfaces, 4000 Users’ Personal Information Exposed
A data breach affecting the online game platform Roblox has exposed sensitive information from thousands of users.Troy Hunt, founder of...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on July 18, 2023. These...
CISA: Citrix Releases Security Updates for NetScaler ADC and Gateway
Citrix Releases Security Updates for NetScaler ADC and Gateway Citrix has released security updates to address vulnerabilities (CVE-2023-3519, CVE-2023-3466, and...
CISA: Oracle Releases Security Updates
Oracle Releases Security Updates Oracle has released its Critical Patch Update Advisory, Solaris Third Party Bulletin, and Linux Bulletin for July...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Develops Factsheet for Free Tools for Cloud Environments
CISA Develops Factsheet for Free Tools for Cloud Environments CISA has developed and published a factsheet, Free Tools for Cloud...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Cybersecurity Advisory on Threat Actors Exploiting Citrix CVE-2023-3519
CISA Releases Cybersecurity Advisory on Threat Actors Exploiting Citrix CVE-2023-3519 The Cybersecurity and Infrastructure Security Agency (CISA) released a Cybersecurity...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on July 20, 2023. This...
CISA: Adobe Releases Security Updates for ColdFusion
Adobe Releases Security Updates for ColdFusion Adobe has released security updates to address a critical vulnerability (CVE-2023-38203) affecting ColdFusion(link is...
US-CERT Vulnerability Summary for the Week of July 10, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoelra -- parkmatikImproper Neutralization of Special Elements used in an SQL Command...
HackerOne Bug Bounty Disclosure: b-hubs-broken-access-control-in-placing-objects-in-hubs-room-b-quikke
Company Name: b'Mozilla Core Services' Company HackerOne URL: https://hackerone.com/mozilla_core_services Submitted By:b'quikke'Link to Submitters Profile:https://hackerone.com/b'quikke' Report Title:b' - Broken access control...
CISA: CISA Releases One Industrial Control Systems Advisory
CISA Releases One Industrial Control Systems Advisory CISA released one Industrial Control Systems (ICS) advisory on July 20, 2023. This...
CISA: CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds Two Known Exploited Vulnerabilities to Catalog CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based...
LockBit 3.0 Ransomware Victim: cityserve-mech[.]co[.]uk
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
LockBit 3.0 Ransomware Victim: obeidpartners[.]com
LockBit 3.0 Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content...
Rockwell Automation ThinManager ThinServer directory traversal | CVE-2023-2913
NAME__________Rockwell Automation ThinManager ThinServer directory traversalPlatforms Affected:Rockwell Automation ThinManager ThinServerRisk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Rockwell Automation ThinManager ThinServer could allow a remote...
WP-FB-AutoConnect plugin for WordPress cross-site request forgery | CVE-2023-37974
NAME__________WP-FB-AutoConnect plugin for WordPress cross-site request forgeryPlatforms Affected:WordPress WP-FB-AutoConnect Plugin for WordPress 4.6.1Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________WP-FB-AutoConnect plugin for WordPress is...
TOTOLINK CP300+ denial of service | CVE-2023-34669
NAME__________TOTOLINK CP300+ denial of servicePlatforms Affected:TOTOLINK CP300+ 5.2cu.7594_B20200910Risk Level:5.3Exploitability:Proof of ConceptConsequences:Denial of Service DESCRIPTION__________TOTOLINK CP300+ is vulnerable to a denial...
Atlas Business Directory Listing cross-site scripting | CVE-2023-3756
NAME__________Atlas Business Directory Listing cross-site scriptingPlatforms Affected:Creativeitem Atlas Business Directory Listing 2.13Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Atlas Business Directory Listing is vulnerable...
Progress Chef Infra Server information disclosure | CVE-2023-28864
NAME__________Progress Chef Infra Server information disclosurePlatforms Affected:Progress Chef Chef Infra Server 15.6.2Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Progress Chef Infra Server could allow...
Veritas InfoScale Operations Manager (VIOM) file upload | CVE-2023-38404
NAME__________Veritas InfoScale Operations Manager (VIOM) file uploadPlatforms Affected:Veritas InfoScale Operations Manager 8.0 Veritas InfoScale Operations Manager 7.0Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Veritas...
