Tag
#windows
PHPJabbers Business Directory Script version 3.2 suffers from cross site request forgery and cross site scripting vulnerabilities.
FOG Forum version 0.8 suffers from a cross site scripting vulnerability.
FoccusWeb CMS version 0.1 suffers from a cross site scripting vulnerability.
Fluent CMS version 1.0.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
Global Multi School Management System Express version 1.0 suffers from a remote SQL injection vulnerability.
FlightPath LMS version 4.8.2 suffers from an insecure direct object reference vulnerability.
FleetCart Laravel Ecommerce System version 1.1.2 suffers from an ignored default credential vulnerability.
FixBook Repair Shop Management Tool version 2.2 suffers from an information leakage vulnerability.
Categories: Exploits and vulnerabilities Categories: News Tags: WinRAR Tags: CVE-2023-40477 Tags: RCE Tags: Windows 11 A new version of WinRAR is available that patches two vulnerabilities attackers could use for remote code execution. (Read more...) The post Update now! WinRAR files can be abused to run malware appeared first on Malwarebytes Labs.
The hackers, who mostly targeted victims in Hong Kong, also hijacked Microsoft’s trust model to make their malware harder to detect.