Bugtraq: FortiManager (Series) - Multiple Web Vulnerabilities
FortiManager (Series) - Multiple Web Vulnerabilities
View ArticleBugtraq: Guppy CMS v5.01.03 - Client Side Cross Site Scripting Web Vulnerability
Guppy CMS v5.01.03 - Client Side Cross Site Scripting Web Vulnerability
View ArticleBugtraq: Car CMS v3.00.30 - Search Cross Site Scripting Vulnerability
Car CMS v3.00.30 - Search Cross Site Scripting Vulnerability
View ArticleBugtraq: Docebo LMS 6.9 - (Moxie) API Calls RST Remote Code Execution...
Docebo LMS 6.9 - (Moxie) API Calls RST Remote Code Execution Vulnerability
View ArticleBugtraq: Zoll ePCR v2.6.4 iOS - Multiple Persistent Vulnerabilities
Zoll ePCR v2.6.4 iOS - Multiple Persistent Vulnerabilities
View ArticleBugtraq: WinSaber - Unquoted Service Path Privilege Escalation
WinSaber - Unquoted Service Path Privilege Escalation
View ArticleBugtraq: Cross-Site Scripting in WangGuard WordPress Plugin
Cross-Site Scripting in WangGuard WordPress Plugin
View ArticleVuln: HP Release Control Software CVE-2016-1999 Remote Code Execution...
HP Release Control Software CVE-2016-1999 Remote Code Execution Vulnerability
View ArticleBugtraq: Cross-Site Scripting in Uji Countdown WordPress Plugin
Cross-Site Scripting in Uji Countdown WordPress Plugin
View ArticleClik here to view.
Frequent password changes are the enemy of security, FTC technologist says
Enlarge / FTC Chief Technologist Lorrie Cranor speaking at PasswordsCon 2016, part of the Bsides security conference in Las Vegas. Shortly after Carnegie Mellon University professor Lorrie Cranor...
View ArticleThe Dark Side of Certificate Transparency, (Wed, Aug 3rd)
I am a big fan of the idea behind Certificate Transparency [1]. The real problem with SSL (and TLS... it really doesnt matter for this discussion) is not the weak ciphers or subtle issues with...
View ArticleVuln: Liferay Portal 'barebone.jsp' Directory Traversal Vulnerability
Liferay Portal 'barebone.jsp' Directory Traversal Vulnerability
View ArticleBugtraq: Arbitrary File Content Disclosure in Atutor
Arbitrary File Content Disclosure in Atutor
View ArticleBugtraq: [SECURITY] [DSA 3638-1] curl security update
[SECURITY] [DSA 3638-1] curl security update
View ArticleVuln: OpenSSL DROWN Attack CVE-2016-0800 Security Bypass Vulnerability
OpenSSL DROWN Attack CVE-2016-0800 Security Bypass Vulnerability
View ArticleBugtraq: WorldCIST'17 - Call for Workshops Proposals; Deadline: September 5
WorldCIST'17 - Call for Workshops Proposals; Deadline: September 5
View ArticleClik here to view.
Yahoo investigating claimed breach and data dump of 200 million users
(credit: Photograph by Randy Stewart) A notorious black hat says he has more than 200 million hacked Yahoo accounts for sale on the dark Web. The company says it is "aware of [the] claim," but is...
View ArticleClik here to view.
Bitcoin value falls off cliff after $77M stolen in Hong Kong exchange hack
The value of bitcoins plummeted 20 percent after almost 120,000 units of the digital currency were stolen from Bitfinex, a major Bitcoin exchange. The Hong Kong-based exchange said it had discovered a...
View ArticleBugtraq: [SECURITY] [DSA 3639-1] wordpress security update
[SECURITY] [DSA 3639-1] wordpress security update
View ArticleVuln: ImageMagick 'MagickCore/enhance.c' Remote Buffer Overflow Vulnerability
ImageMagick 'MagickCore/enhance.c' Remote Buffer Overflow Vulnerability
View Article