CVE-2015-10086

Read Time:27 Second

A vulnerability, which was classified as critical, was found in OpenCycleCompass server-php. Affected is an unknown function of the file api1/login.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The name of the patch is fa0d9bcf81c711a88172ad0d37a842f029ac3782. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-221808.

Major Online Platform for Child Exploitation Dismantled

CrushFTP Vulnerability Exploited Following Disclosure Issues

HellCat ransomware: what you need to know

Amateur Hacker Leverages Russian Bulletproof Hosting Server to Spread Malware

Web 3.0 Requires Data Integrity

Sensitive Data Breached in Highline Schools Ransomware Incident

Over Half of Attacks on Electricity and Water Firms Are Destructive

Nearly 600 Phishing Domains Emerge Following Bybit Heist

CISO: Chief Cybersecurity Warrior Leader

USN-7415-1: Linux kernel vulnerabilities

Kubernetes Ingress-nginx Controller RCE

perl-Compress-Raw-Lzma-2.212-6.fc41 xz-5.8.1-1.fc41.1

perl-Compress-Raw-Lzma-2.209-9.fc40 xz-5.8.1-1.1.fc40

Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution

A Vulnerability in Ivanti Products Could Allow for Remote Code Execution