-
Exploits & CVE's
FireBear Improved Import And Export 3.8.6 XSLT Server Side Injection
Authored by tmrswrr FireBear Improved Import and Export version 3.8.6 for Magento 2.4.6 suffers from an XSLT server-side injection vulnerability…
-
Exploits & CVE's
Jorani Leave Management System 1.0.2 Host Header Injection
Authored by Rahad Chowdhury Jorani Leave Management System version 1.0.2 suffers from a host header injection vulnerability. advisories | CVE-2023-48205…
-
Attacks
New ‘HrServ.dll’ Web Shell Detected in APT Attack Targeting Afghan Government
By: Nov 25, 2023NewsroomCyber Attack / Threat Intelligence An unspecified government entity in Afghanistan was targeted by a previously undocumented…
-
Exploits & CVE's
PyroCMS 3.0.1 Cross Site Scripting
Authored by tmrswrr PyroCMS version 3.0.1 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit Title:…
-
Exploits & CVE's
CE Phoenix 1.0.8.20 Cross Site Scripting
Authored by tmrswrr CE Phoenix version 1.0.8.20 suffers from a persistent cross site scripting vulnerability. Change Mirror Download # Exploit…
-
Breaches
Tell Me Your Secrets Without Telling Me Your Secrets
By: Nov 24, 2023The Hacker NewsDeveloper Tools / API Security The title of this article probably sounds like the caption…
-
Exploits & CVE's
Magento 2.4.6 XSLT Server Side Injection
Authored by tmrswrr Magento version 2.4.6 XSLT server-side injection proof of concept exploit. Change Mirror Download # Exploit Title: Magento…
-
Exploits & CVE's
WordPress UserPro 5.1.x Password Reset / Authentication Bypass / Escalation
Authored by Istvan Marton | Site wordfence.com WordPress UserPro plugin versions 5.1.1 and below suffer from an insecure password reset…
-
Attacks
Mustang Panda Hackers Targets Philippines Government Amid South China Sea Tensions
By: Nov 21, 2023NewsroomCyber Attack / Cyber Espionage The China-linked Mustang Panda actor has been linked to a cyber attack…
-
Breaches
AI Solutions Are the New Shadow IT
By: Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security RisksLike the SaaS shadow IT of the past, AI…