NAME__________Ekushey Project Manager CRM cross-site scriptingPlatforms Affected:Creativeitem Ekushey Project Manager CRM 5.0Risk Level:3.5Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Ekushey Project Manager CRM is vulnerable...
NAME__________Oracle JD Edwards EnterpriseOne Orchestrator unspecifiedPlatforms Affected:Oracle JD Edwards EnterpriseOne Orchestrator 9.2.7.3Risk Level:5.4Exploitability:UnprovenConsequences:Other DESCRIPTION__________An unspecified vulnerability in Oracle JD Edwards...
NAME__________Super Store Finder plugin for WordPress SQL injectionPlatforms Affected:WordPress Super Store Finder plugin for WordPress 3.6Risk Level:6.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Super Store...
NAME__________Oracle Business Intelligence Enterprise Edition unspecifiedPlatforms Affected:Oracle Business Intelligence Enterprise Edition 6.4.0.0.0 Oracle Business Intelligence Enterprise Edition 7.0.0.0.0Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access...
NAME__________Cisco Small Business SPA500 Series IP Phones cross-site scriptingPlatforms Affected:Cisco Small Business SPA500 Series IP PhonesRisk Level:6.1Exploitability:HighConsequences:Gain Access DESCRIPTION__________Cisco Small...
NAME__________RWS WorldServer information disclosurePlatforms Affected:RWS WorldServer 11.7.3Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________RWS WorldServer could allow a remote attacker to obtain sensitive information,...
NAME__________OpenSSL denial of servicePlatforms Affected:OpenSSL OpenSSL 1.1.1 OpenSSL OpenSSL 1.0.2 OpenSSL OpenSSL 3.1.0 OpenSSL OpenSSL 3.1.1Risk Level:3.7Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________OpenSSL...
NAME__________Cisco Small Business SPA500 Series IP Phones HTML injectionPlatforms Affected:Cisco Small Business SPA500 Series IP PhonesRisk Level:5.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Cisco Small...
NAME__________Oracle MySQL Server unspecifiedPlatforms Affected:Oracle MySQL Server 5.7.41 Oracle MySQL Server 8.0.32Risk Level:4.9Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________An unspecified vulnerability in Oracle...
NAME__________Oracle Business Intelligence Enterprise Edition unspecifiedPlatforms Affected:Oracle Business Intelligence Enterprise Edition 6.4.0.0.0 Oracle Business Intelligence Enterprise Edition 7.0.0.0.0Risk Level:4.3Exploitability:UnprovenConsequences:Gain Access...
NAME__________Adobe ColdFusion security bypassPlatforms Affected:Adobe ColdFusion 2023 Update 2 Adobe ColdFusion 2021 Update 8 Adobe ColdFusion 2018 Update 18Risk Level:7.5Exploitability:UnprovenConsequences:Bypass...
NAME__________Cisoc BroadWorks privilege escalationPlatforms Affected:Cisco BroadWorks Application Server Cisco BroadWorks Application Delivery Platform Software Cisco BroadWorks Xtended Services Platform Cisco...
NAME__________cURL libcurl security bypassPlatforms Affected:cURL libcurl 7.84.0 cURL libcurl 8.1.2Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________cURL libcurl could allow a remote authenticated attacker...
NAME__________Adobe ColdFusion security bypassPlatforms Affected:Adobe ColdFusion 2023 Update 2 Adobe ColdFusion 2021 Update 8 Adobe ColdFusion 2018 Update 18Risk Level:5.3Exploitability:UnprovenConsequences:Bypass...
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
BianLian Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
FBI warns of a surge in tech support scams targeting the elderly across the United States and urging victims to...
The U.S. government has banned European commercial spyware manufacturers Intellexa and Cytrox, citing risks to U.S. national security and foreign...
Microsoft and the Ukraine CERT warn of new attacks by the Russian state-sponsored Turla hacking group, targeting the defense industry...
Adobe released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploited in...
Threat actors are showing an increased interest in generative artificial intelligence tools, with hundreds of thousands of OpenAI credentials for...
The Cyber Police Department of the National Police of Ukraine dismantled another massive bot farm linked to more than 100...
Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim...
Multiple vulnerabilities were identified in Adobe ColdFusion. A remote attacker could exploit some of these vulnerabilities to trigger remote code...
