NAME__________Node.js weak securityPlatforms Affected:Node.js Node.js 16.0 Node.js Node.js 18.0 Node.js Node.js 20.0Risk Level:5.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Node.js could provide weaker than expected...
NAME__________NetBSD spoofingPlatforms Affected:NetBSD NetBSDRisk Level:3.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________NetBSD could allow a remote attacker to conduct spoofing attacks, caused by improper distinction...
NAME__________Devolutions Server information disclosurePlatforms Affected:Devolutions Devolutions Server 2023.1.8Risk Level:4.2Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Devolutions Server could allow a remote authenticated attacker to obtain...
NAME__________Node.js security bypassPlatforms Affected:Node.js Node.js 20.0Risk Level:7.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Node.js could allow a remote attacker to bypass security restrictions, caused by...
NAME__________Online School Fees System SQL injectionPlatforms Affected:Sourcecodester Online School Fees System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Online School Fees System is vulnerable...
NAME__________ISC BIND denial of servicePlatforms Affected:ISC BIND 9.18.0 ISC BIND 9.19.0 ISC BIND 9.16.12Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________ISC BIND is...
NAME__________Album Photos module for Drupal security bypassPlatforms Affected:Drupal Album Photos module for Drupal 6.0 Drupal Album Photos module for Drupal...
NAME__________Civic Cookie Control module for Drupal cross-site scriptingPlatforms Affected:Drupal Civic Cookie Control module for Drupal 4.4.12 Drupal Civic Cookie Control...
NAME__________Cisco Duo Two-Factor Authentication for macOS security bypassPlatforms Affected:Cisco Duo Two-Factor Authentication for macOSRisk Level:6.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Cisco Duo Two-Factor Authentication...
NAME__________Cisco Secure Email and Web Manager and Cisco Secure Web Appliance cross-site scriptingPlatforms Affected:Cisco Secure Email and Web Manager Cisco...
NAME__________Apache Tomcat information disclosurePlatforms Affected:Apache Tomcat 8.5.88 Apache Tomcat 9.0.74 Apache Tomcat 10.1.8 Apache Tomcat 11.0.0-M5Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apache Tomcat...
NAME__________Juniper Networks Junos OS and Junos OS Evolved denial of servicePlatforms Affected:Juniper Networks Junos OS Juniper Networks Junos OS EvolvedRisk...
NAME__________Cisco Secure Email and Web Manager cross-site scriptingPlatforms Affected:Cisco Secure Email and Web ManagerRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco Secure Email and...
NAME__________Cisco Secure Email and Web Manager, Cisco Secure Email Gateway, and Cisco Secure Web Appliance cross-site scriptingPlatforms Affected:Cisco Secure Email...
NAME__________ISC BIND denial of servicePlatforms Affected:ISC BIND 9.18.0 ISC BIND 9.16.12Risk Level:7.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________ISC BIND is vulnerable to a...
Protecting how you administer cloud services No matter which cloud service you choose, there are two aspects of your security...
Threats and key takeaways for the legal sector A new https://www.ncsc.gov.uk/report/cyber-threat-report-uk-legal-sector" target="_self">threat report published today reveals why the legal sector...
The Chinese state-sponsored hacking group tracked as APT15 has been observed using a novel backdoor named 'Graphican' in a new...
The world of cybercrime is moving quickly. Threat actors, ransomware gangs, malware developers, and others are increasingly and rapidly moving...
The Federal Trade Commission (FTC) says Amazon allegedly used dark patterns to trick millions of users into enrolling in its...
Proof-of-concept exploit code is now available for a high-severity flaw in Cisco Secure Client Software for Windows (formerly AnyConnect Secure...
Multinational shipping company UPS is alerting Canadian customers that some of their personal information might have been exposed via its...
Car mount and mobile accessory maker iOttie warns that its site was compromised for almost two months to steal online...
CISA and NSA Release Joint Guidance on Hardening Baseboard Management Controllers (BMCs) Today, CISA, together with the National Security Agency...
