CISA Unveils Cybersecurity Goals For Critical Infrastructure Sectors
The document is the result of a July 2021 security memorandum signed by President Biden Read More
CVE-2021-38217 (semcms)
SEMCMS v 1.2 is vulnerable to SQL Injection via SEMCMS_User.php. Read More
CVE-2021-36863 (quiz_and_survey_master)
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress. Read More
CVE-2021-36858 (testimonials)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Themepoints Testimonials plugin <= 2.6 on WordPress. Read More
Cranefly Hackers Use Stealthy Techniques to Deliver and Control Malware
These attackers reportedly spent at least 18 months on victim networks Read More
xerces-c-3.2.3-5.el8
FEDORA-EPEL-2022-fac3491880 Packages in this update: xerces-c-3.2.3-5.el8 Update description: Update to 3.2.3 (#1788475) Read More
CVE-2021-37782 (employee_record_management_system)
Employee Record Management System v 1.2 is vulnerable to SQL Injection via editempprofile.php. Read More
CVE-2021-37781 (employee_record_management_system)
Employee Record Management System v 1.2 is vulnerable to Cross Site Scripting (XSS) via editempprofile.php. Read More
CVE-2021-35388
Hospital Management System v 4.0 is vulnerable to Cross Site Scripting (XSS) via /hospital/hms/admin/patient-search.php. Read More
CVE-2021-35387
Hospital Management System v 4.0 is vulnerable to SQL Injection via file:hospital/hms/admin/view-patient.php. Read More