Aggregator

A vulnerability was found in OpenBase. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file development.php. The manipulation of the argument root_prefix leads to Remote Code Execution. This vulnerability is known as CVE-2007-2947. The attack can be launched remotely. Furthermore, there is an exploit available.

A North Korean-linked threat group with a history of using fake job offers in its scams is targetin

A vulnerability, which was classified as critical, was found in Keyvan1 EShoppingPro 1.0. Affected is an unknown function of the file search_run.asp. The manipulation of the argument order leads to sql injection. This vulnerability is traded as CVE-2006-4871. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in OpenBase. It has been classified as critical. Affected is an unknown function of the file download.php. The manipulation of the argument root_prefix leads to Remote Code Execution. This vulnerability is traded as CVE-2007-2947. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

==========================================================================Ubuntu Security Notice U

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- --------------------------------------------------

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.co

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.co

Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024Original source: https://malvuln.co

==========================================================================Ubuntu Security Notice U

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- --------------------------------------------------

A vulnerability classified as problematic has been found in ShopCartCGI 2.3. This affects an unknown part of the file gotopage.cgi/genindexpage.cgi. The manipulation leads to path traversal. This vulnerability is uniquely identified as CVE-2004-0293. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Discord has introduced the DAVE protocol, a custom end-to-end encryption (E2EE) protocol designed to protect audio and video calls on the platform from unauthorized interceptions. [...]

Immagina la sicurezza della tua azienda come un'orchestra, dove ogni musicista suona il proprio stru

A Chinese national has been indicted in the U.S. on charges of conducting a "multi-year" spear-phis

A vulnerability was found in Webizz Alma Corinthiana 1. It has been rated as critical. Affected by this issue is some unknown functionality of the component X.509 Certificate Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-6839. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in Adobe ColdFusion Builder up to 2016 Update/3.0.3. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2016-7887. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

Scammers are flooding Facebook with groups that purport to offer video streaming of fun

A vulnerability, which was classified as problematic, has been found in Adobe RoboHelp up to 2015.0.3/11. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2016-7891. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

Digital security has long relied on cryptographic systems that use complex mathematical problems (a