RST Threat feed. IOC: https://api-saisoncard-co-jp.diaocgialongcorp.com/?ja4ql.z1

Found **https://api-saisoncard-co-jp[.]diaocgialongcorp.com/?ja4...Read More ...

Continue Reading

June 03, 2022

RST Threat feed. IOC: http://61.184.215.224:443/api/v1

Found **http://61[.]184.215.224:443/api/v1** in [RST Threat Fee...Read More ...

Continue Reading

June 03, 2022

RST Threat feed. IOC: pancakesvep-api.com

Found **pancakesvep-api[.]com** in [RST Threat Feed](https://rs...Read More ...

Continue Reading

June 03, 2022

CVE-2022-30034

Flower, a web UI for the Celery Python RPC framework, all versions as of 05-02-2022 is vulnerable to an OAuth authentication bypass. An attacker could then access the Flower API to discover and invoke ...

Continue Reading

June 03, 2022

Dev error stack trace leaking into prod in Play Framework

### Impact Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based ...

Continue Reading

June 03, 2022

Server-Side Template Injection in formio

A Server-Side Template Injection (SSTI) was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL.Read More ...

Continue Reading

June 03, 2022

Server-Side Template Injection in formio

A Server-Side Template Injection (SSTI) was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL.Read More ...

Continue Reading

June 03, 2022

Dev error stack trace leaking into prod in Play Framework

### Impact Play Framework, when run in dev mode, shows verbose errors for easy debugging, including an exception stack trace. Play does this by configuring its `DefaultHttpErrorHandler` to do so based ...

Continue Reading

June 03, 2022

1 9,293 9,294 9,295 9,296 9,297 9,321

Back to Main
Subscribe for the latest news: