Security
Headlines
HeadlinesLatestCVEs

Tag

#apple

Senayan Library Management System 9.2.1 Cross Site Scripting

Senayan Library Management System version 9.2.1 suffers from a cross site scripting vulnerability.

Packet Storm
Open in Source
#xss#vulnerability#web#windows#apple#git#java#php#auth#chrome#webkit
Microsoft Details Gatekeeper Bypass Vulnerability in Apple macOS Systems

Microsoft has disclosed details of a now-patched security flaw in Apple macOS that could be exploited by an attacker to get around security protections imposed to prevent the execution of malicious applications. The shortcoming, dubbed Achilles (CVE-2022-42821, CVSS score: 5.5), was addressed by the iPhone maker in macOS Ventura 13, Monterey 12.6.2, and Big Sur 11.7.2, describing it as a logic

CVE-2022-40434: Build website, web app & portals on Airtable without code | Softr

Softr v2.0 was discovered to be vulnerable to HTML injection via the Name field of the Account page.

Senayan Library Management System 9.2.0 Cross Site Scripting

Senayan Library Management System version 9.2.0 suffers from a cross site scripting vulnerability.

Senayan Library Management System 9.1.1 Cross Site Scripting

Senayan Library Management System version 9.1.1 suffers from a cross site scripting vulnerability.

Chasing cryptocurrency through cyberspace, with Brian Carter: Lock and Code S03E26

Categories: Podcast This week on Lock and Code, we learn about how investigators actually track illicit cryptocurrency payments through cyberspace after they've already been exchanged as part of a crime. (Read more...) The post Chasing cryptocurrency through cyberspace, with Brian Carter: Lock and Code S03E26 appeared first on Malwarebytes Labs.

A week in security (December 12 - 18)

Categories: News Tags: week in security Tags: AWIS Tags: weekly blog recap Tags: Indiana Tags: TikTok Tags: MSP Tags: electronic sales suppression tools Tags: iPhone Tags: Play ransomware Tags: ransomware Tags: Nebula Tags: Quarantine for Cloud Storage Scanning Tags: SOC Tags: ROI Tags: Uber Tags: Apple Tags: virtual kidnapping Tags: DDoS booter service Tags: law enforcement takedown Tags: InfraGuard Tags: InfraGuard breach The most interesting security related news from the week of December 12 to 18. (Read more...) The post A week in security (December 12 - 18) appeared first on Malwarebytes Labs.

CVE-2022-46135: AeroCMS v0.0.1 Arbitrary File upload vulnerability · Issue #5 · MegaTKC/AeroCMS

In AeroCms v0.0.1, there is an arbitrary file upload vulnerability at /admin/posts.php?source=edit_post , through which we can upload webshell and control the web server.

Update now! Apple patches active exploit vulnerability for iPhones

Categories: Exploits and vulnerabilities Categories: News Tags: Apple Tags: iOS 16.1.2 Tags: Safari 16.2 Tags: CVE-2022-42856 Tags: type confusion Apple has released new security content for iOS 16.1.2 and Safari 16.2. to fix a zero-day security vulnerability that was actively exploited (Read more...) The post Update now! Apple patches active exploit vulnerability for iPhones appeared first on Malwarebytes Labs.