Friday, April 19, 2024

Category

Vulnerabilities

InfoSec NewsTrendingVulnerabilitiesCybersecurity AcademyData SecurityData Breach NewsWorld AffairsHow to

Top Vulnerabilities Exploited in 2022 as revealed by FBI, CISA, and NSA

InfoSec News Steven Black (n0tst3) -
The year 2022 witnessed a surge in cyberattacks by malicious actors targeting unpatched, internet-facing systems. In a joint Cybersecurity Advisory (CSA), top cybersecurity agencies...
Read more

A word from our sponsor

spot_img
Vulnerabilities

PAN-OS 10.0 RCE (Remote Code Execution) Vulnerability

A Remote Code Execution vulnerability (Authenticated) was discovered in PAN-OS 10.0...
Steven Black (n0tst3) -
Vulnerabilities

ThingsBoard 3.3.1 XSS – Stored Cross-Site Scripting (XSS)

A Stored XSS (Cross-Site Scripting) vulnerability was discovered in ThingsBoard 3.3.1...
Steven Black (n0tst3) -
Vulnerabilities

Prestashop SQLi blockwishlist module 2.1.0

An SQL Injection vulnerability was discovered in Prestashop Blockwishlist module by...
Steven Black (n0tst3) -
Data Security

Open Redirect Flaw Snags Amex, Snapchat User Data

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft,...
RiSec.Mitch -
InfoSec News

WP-UserOnline Stored Cross-Site Scripting (XSS) PoC – 2.87.6 <=

A Stored XSS Vulnerability was discovered in WordPress plugin, WP-UserOnline, by...
Steven Black (n0tst3) -
InfoSec News

LibreOffice Security Update Fixes Macro Execution Bypass and Potential Password Leaking

The developers of LibreOffice have released updates for the open source...
Steven Black (n0tst3) -
InfoSec News

Grails Framework Vuln Could Allow for Remote Code Execution (CVE-2022-35912)

OVERVIEW: A vulnerability have been discovered in the Grails Framework which could...
Steven Black (n0tst3) -
InfoSec News

Zero Day attacks target online stores using PrestaShop

Threat actors are exploiting a zero-day vulnerability to steal payment information...
Steven Black (n0tst3) -
InfoSec News

SonicWall patches critical SQLi in Analytics and GMS products

Security company SonicWall released updates to address a critical SQL injection...
RiSec.Mitch -
InfoSec News

Microsoft closes two avenues of attack: Office macros, RDP brute-forcing

Microsoft is trying to shut the door on a couple of...
Steven Black (n0tst3) -
1...456...17Page 5 of 17

Editor Picks

Featured

Cyber Academy

ABOUT US

RiSec represents an autonomous, non-profit alliance comprising of individuals dedicated to enhancing cybersecurity awareness and education. Read more

Contact us: security@realinfosec.net

Social

Subscribe for weekly updates

Copyright © RiSec 2023 All rights reserved.
All trademarks, logos, images and brand names are the property of their respective owners.