#sql

North Korean threat actors have leveraged a fake Windows video conferencing application impersonating FreeConference.com to backdoor developer systems as part of an ongoing financially-driven campaign dubbed Contagious Interview. The new attack wave, spotted by Singaporean company Group-IB in mid-August 2024, is yet another indication that the activity is also leveraging native installers for

Tourism Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

Taskhub version 2.8.8 suffers from an ignored default credential vulnerability.

Webpay E-Commerce version 1.0 suffers from a remote SQL injection vulnerability.

Cybersecurity researchers have unpacked the inner workings of a new ransomware variant called Cicada3301 that shares similarities with the now-defunct BlackCat (aka ALPHV) operation. "It appears that Cicada3301 ransomware primarily targets small to medium-sized businesses (SMBs), likely through opportunistic attacks that exploit vulnerabilities as the initial access vector," cybersecurity

Online Musical Instrument Shop IN version 1.0 suffers from a cross site scripting vulnerability.

Online Job Portal IN version 1.0 suffers from a remote SQL injection vulnerability.

pgAdmin versions 8.4 and earlier are affected by a remote reverse connection execution vulnerability via the binary path validation API.

Loan Management System 2024 version 1.0 suffers from an ignored default credential vulnerability.

File Management System version 1.0 suffers from a cross site request forgery vulnerability.