SIEM as a Service
Home Search

malicious attacker - search results

If you're not happy with the results, please do another search
Roundcube

Roundcube XSS Vulnerability Let Attackers Inject Malicious Files

A critical Cross-Site Scripting (XSS) vulnerability, tracked as CVE-2024-57004, has been discovered in Roundcube Webmail version 1.6.9.  This flaw allows remote authenticated users to upload...
GitHub Copilot Jailbreak Vulnerability

GitHub Copilot Jailbreak Vulnerability Let Attackers Train Malicious Models

Researchers have uncovered two critical vulnerabilities in GitHub Copilot, Microsoft’s AI-powered coding assistant, that expose systemic weaknesses in enterprise AI tools.  The flaws—dubbed “Affirmation Jailbreak”...
Apache Traffic Control Vulnerability Let Attackers Inject Malicious SQL Commands

Apache Traffic Control Vulnerability Let Attackers Inject Malicious SQL Commands

A critical SQL injection vulnerability, identified as CVE-2024-45387, has been discovered in Apache Traffic Control, a widely used open-source platform for managing large-scale content...
Critical Mullvad VPN Vulnerabilities Let Attackers Execute Malicious Code

Critical Mullvad VPN Vulnerabilities Let Attackers Execute Malicious Code

Security researchers have uncovered several high-severity vulnerabilities in the popular Mullvad VPN service that could allow attackers to execute malicious code and compromise user...
SAP NetWeaver Vulnerabilities Let Attackers Upload Malicious PDF Files

SAP NetWeaver Vulnerabilities Let Attackers Upload Malicious PDF Files

SAP has issued a crucial security update addressing multiple high-severity vulnerabilities in its NetWeaver Application Server for Java, specifically within the Adobe Document Services...
Dell Power Manager - Code Execution Vulnerability

Dell Power Manager Vulnerability Let Attackers Execute Malicious Code

A critical security vulnerability has been discovered in Dell Power Manager (DPM), a widely used application for managing power settings on Dell systems. The...
OpenWrt Supply Chain Attack Via SHA-256 Collision & Command Injection

OpenWrt Vulnerability Let Attackers Inject Malicious Firmware Images

A critical vulnerability in OpenWrt's firmware upgrade system has been recently unveieled by the security researcher RyotaK from Flatt Security Inc.. The exploit, which combines...
WordPress Gutenberg Editor Vulnerability Let Attackers Inject Malicious Scripts

WordPress Gutenberg Editor Vulnerability Let Attackers Inject Malicious Scripts

A newly disclosed vulnerability in the Gutentor – Gutenberg Blocks – Page Builder for Gutenberg Editor plugin for WordPress has raised concerns among website...
SolarWinds Platform XSS Vulnerability Let Attackers Inject Malicious Code

SolarWinds Platform XSS Vulnerability Let Attackers Inject Malicious Code

A critical security vulnerability has been recently disclosed by SolarWinds in its Platform product, a major player in IT management software. The flaw, identified as...
MobSF Vulnerability Let Attackers Inject Malicious Scripts

MobSF Vulnerability Let Attackers Inject Malicious Scripts

A critical security flaw has been discovered in Mobile Security Framework (MobSF), a popular pen-testing and malware analysis tool, potentially exposing users to significant...
SIEM as a Service

Recent Posts

SonicWall Firewall Authentication Bypass Vulnerability Exploited in Wild Following PoC Release

A critical authentication bypass vulnerability in SonicWall firewalls, tracked as CVE-2024-53704, is now being actively exploited in the wild, cybersecurity firms warn. The surge in...