Security
Headlines
HeadlinesLatestCVEs

Tag

#apple

AirDisk 7.5.5 Cross Site Scripting

AirDisk version 7.5.5 suffers from a persistent cross site scripting vulnerability.

Packet Storm
#xss#vulnerability#ios#apple#auth#wifi
@Drive 2.8 Local File Inclusion

@Drive version 2.8 suffers from a local file inclusion vulnerability.

Microsoft, Cloud Providers Move to Ban Basic Authentication

Microsoft moves ahead with a plan to sunset basic authentication, and other providers are moving — or have moved — to requiring more secure authentication as well. Is your company ready?

CVE-2022-3148: XSS at app.diagrams.net in drawio

Cross-site Scripting (XSS) - Generic in GitHub repository jgraph/drawio prior to 20.3.0.

Apple’s Killing the Password. Here’s Everything You Need to Know

With iOS 16 and macOS Ventura, Apple is introducing passkeys—a more convenient and secure alternative to passwords.

CVE-2022-36539: ‎Eigen&Wijzer Ouderapp

WeDayCare B.V Ouderapp before v1.1.22 allows attackers to alter the ID value within intercepted calls to gain access to data of other parents and children.

FE File Explorer 11.0.4 Local File Inclusion

FE File Explorer version 11.0.4 suffers from a local file inclusion vulnerability.

FTPManager 8.2 Local File Inclusion / Directory Traversal

FTPManager version 8.2 suffers from local file inclusion and directory traversal vulnerabilities.

CVE-2022-35513: Releases · todbot/Blink1Control2

The Blink1Control2 application <= 2.2.7 uses weak password encryption and an insecure method of storage.

The 3 Fundamentals of Building an Effective IoMT Security Strategy

The high stakes and unique priorities for Internet of Medical Things devices require specialized cybersecurity strategies.