Backdoor.Win32.Psychward.03.a / Weak Hardcoded Password
Posted by malvuln on Apr 14 Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/d069738f18957117367b8a79195a6a96.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat:...
Backdoor.Win32.Prorat.cwx / Insecure Permissions
Posted by malvuln on Apr 14 Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/2d81bf2c55c81778533b55fb444d4dc6.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat:...
Backdoor.Win32.MotivFTP.12 / Authentication Bypass
Posted by malvuln on Apr 14 Discovery / credits: Malvuln - malvuln.com (c) 2022 Original source: https://malvuln.com/advisory/91b2d216c5d26d9db4289acf68fa1743.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat:...
Incomplete Fix for Apache Struts 2 Vulnerability (CVE-2021-31805) Amended
FortiGuard Labs is aware that the Apache Software Foundation disclosed and released a fix for a potential remote code execution vulnerability (CVE-2021-31805 OGNL Injection vulnerability...
Post Title
A vulnerability has been discovered in Apache Struts, which could allow for remote code execution. Apache Struts is an open source framework used for building...
Post Title
A vulnerability has been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Google Chrome is a web browser...
Newly Patched VMware Vulnerability (CVE-2022-22954) Being Exploited in the Wild
FortiGuard Labs is aware that VMware has confirmed a recently patched critical vulnerability in VMware Workspace ONE Access and Identity Manager (CVE-2022-22954) has been exploited...
AST-2022-003: func_odbc: Possible SQL Injection
Posted by Asterisk Security Team on Apr 14 Asterisk Project Security Advisory - AST-2022-003 Product Asterisk Summary func_odbc: Possible SQL Injection Nature of Advisory SQL...
AST-2022-002: res_stir_shaken: SSRF vulnerability with Identity header
Posted by Asterisk Security Team on Apr 14 Asterisk Project Security Advisory - AST-2022-002 Product Asterisk Summary res_stir_shaken: SSRF vulnerability with Identity header Nature of...
AST-2022-001: res_stir_shaken: resource exhaustion with large files
Posted by Asterisk Security Team on Apr 14 Asterisk Project Security Advisory - AST-2022-001 Product Asterisk Summary res_stir_shaken: resource exhaustion with large files Nature of...