[SECURITY] Fedora 36 Update: golang-github-haproxytech-dataplaneapi-2.4.4-4.fc36

HAProxy Data Plane API.Read More ...

Continue Reading

July 04, 2022

CVE-2022-34829

Zoho ManageEngine ADSelfService Plus before 6203 allows a denial of service (application restart) via a crafted payload to the Mobile App Deployment API.Read More ...

Continue Reading

July 04, 2022

Cloud OSINT. Finding Interesting Resources

![](https://www.pentestpartners.com/content/uploads/2020/07/CloudOSINTResourses-headline.png) Locating sensitive information, personally identifiable information (PII) and questionable assets in the c ...

Continue Reading

July 04, 2022

Some Worms Use Their Powers for Good

[![Computer Worm](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEiRtnVE2yAyfuCalSQ9W991sYnc1ob8giQ0t28gacRTEU7GVN47pHwGNM-qrSFiTl4vdzuliMLVEiRld3xd8p7XY_UlofdmdXbDoAd_eBieNTCXEZ1mR-m6uuh3Qt ...

Continue Reading

July 04, 2022

Exploit for Vulnerability in Microsoft

# CVE-2022-26809-POC metasploit module for CVE-2022-26809 window...Read More ...

Continue Reading

July 04, 2022

Idor Lead to Delete exported data file

# Description In this case attacker is able to delete requested export data file Steps to repro:- 1.Create 2 accounts 2.Login in both account and goto export section and create new export in both acc ...

Continue Reading

July 03, 2022

Full Read Server-Side Request Forgery (SSRF)

# ?? Requirements Privileges: None. # ? Description The `avatarUrl` post parameter from `/api/users.update` and `/api/teams.update` api endpoint isn't sanitize and permit to get a full read SSRF explo ...

Continue Reading

July 03, 2022

Multiple Reflected XSS Vulnerabilities in error handlers

# Description Multiple routing error handlers are vulnerable to reflected XSS. # Proof of Concept Deploy `trilium` server and access to these endpoint will execute the alert js function. ``` https://l ...

Continue Reading

July 02, 2022

1 9,233 9,234 9,235 9,236 9,237 9,321

Back to Main
Subscribe for the latest news: