OXAS-ADV-2023-0001: OX App Suite Security Advisory
Posted by Martin Heiland via Fulldisclosure on May 08 Dear subscribers, We're sharing our latest advisory with you and like to thank everyone who contributed...
SCHUTZWERK-SA-2023-001: SQL Injection in Spryker Commerce OS
Posted by Lennert Preuth via Fulldisclosure on May 08 Title ===== SCHUTZWERK-SA-2023-001: SQL Injection in Spryker Commerce OS Status ====== PUBLISHED Version ======= 1.0 CVE...
New ransomware group CACTUS abuses remote management tools for persistence
A cybercriminal group has been compromising enterprise networks for the past two months and has been deploying a new ransomware program that researchers dubbed CACTUS....
rust-ybaas-0.0.16-1.fc37 rust-yubibomb-0.2.12-1.fc37
FEDORA-2023-80ab942675 Packages in this update: rust-ybaas-0.0.16-1.fc37 rust-yubibomb-0.2.12-1.fc37 Update description: Update yubibomb to version 0.2.12. Update ybaas to version 0.0.16. Read More
AI Hacking Village at DEF CON This Year
At DEF CON this year, Anthropic, Google, Hugging Face, Microsoft, NVIDIA, OpenAI and Stability AI will all open up their models for attack. The DEF...
LibRaw-0.20.2-8.fc37
FEDORA-2023-fb8f800cb7 Packages in this update: LibRaw-0.20.2-8.fc37 Update description: Patch for CVE-2023-1729. Read More
LibRaw-0.20.2-8.fc36
FEDORA-2023-1bffe413e9 Packages in this update: LibRaw-0.20.2-8.fc36 Update description: Patch for CVE-2023-1729. Read More
LibRaw-0.21.1-4.fc38
FEDORA-2023-659606fa84 Packages in this update: LibRaw-0.21.1-4.fc38 Update description: Patch for CVE-2023-1729. Read More
CVE-2020-22755
File upload vulnerability in MCMS 5.0 allows attackers to execute arbitrary code via a crafted thumbnail. A different vulnerability than CVE-2022-31943. Read More
CVE-2020-22334
Cross Site Request Forgery (CSRF) vulnerability in beescms v4 allows attackers to delete the administrator account via crafted request to /admin/admin_admin.php. Read More