CVE-2020-26065
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain...
CVE-2020-26064
A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information...
Friday Squid Blogging: 2023 Squid Oil Global Market Report
I had no idea that squid contain sufficient oil to be worth extracting. As usual, you can also use this squid post to talk about...
CVE-2022-41401
OpenRefine <= v3.5.2 contains a Server-Side Request Forgery (SSRF) vulnerability, which permits unauthorized users to exploit the system, potentially leading to unauthorized access to internal...
Stealthy npm Malware Exposes Developer Data
Phylum said the attack demonstrated a carefully crafted development cycle Read More
VMConnect: Python PyPI Threat Imitates Popular Modules
ReversingLabs said the attackers displayed a sophisticated approach and techniques Read More
CISA Announces 2024-2026 Strategic Plan
The US’ leading cybersecurity agency calls for us to “embody the hacker spirit” in its latest strategic plan Read More
Sophisticated Phishing Exploits Zero-Day Salesforce Vulnerability
Guardio Labs detected the campaign and detailed its findings in a technical blog post Read More
java-17-openjdk-portable-17.0.8.0.7-1.fc37
FEDORA-2023-d1d4839202 Packages in this update: java-17-openjdk-portable-17.0.8.0.7-1.fc37 Update description: Update to jdk-17.0.8.0+7 Read More
Teach a Man to Phish and He’s Set for Life
One frustrating aspect of email phishing is the frequency with which scammers fall back on tried-and-true methods that really have no business working these days....