ASUS PCE-AC56 WLAN card utilities (PCAUSA Rawether Windows 10 x64) local privilege escalation exploit.
Monthly Archives: March 2017
Joomla Vik Appointments 1.5 SQL Injection
Joomla Vik Appointments component version 1.5 suffers from a remote SQL injection vulnerability.
Joomla Vik Rent Items 1.3 SQL Injection
Joomla Vik Rent Items component version 1.3 suffers from a remote SQL injection vulnerability.
Joomla Vik Rent Car 1.11 SQL Injection
Joomla Vik Rent Car component version 1.11 suffers from a remote SQL injection vulnerability.
APAC bore brunt of cyberattacks in 2016 -ZDNet
APAC bore brunt of cyberattacks in 2016 -ZDNet
PetrWrap Ransomware Found, Attacks and Locks up Entire Organizations -SC Magazine
PetrWrap Ransomware Found, Attacks and Locks up Entire Organizations -SC Magazine
Microsoft Finally Releases Security Patches For Publicly-Disclosed Critical Flaws
After last month’s postponement, Microsoft’s Patch Tuesday is back with a massive release of fixes that includes patches for security vulnerabilities in Windows and associated software disclosed and exploited since January’s patch release.
Meanwhile, Adobe has also pushed out security updates for its products, releasing patches for at least seven security vulnerabilities in its Flash Player
dotCMS H2 Database CategoriesServlet inode SQL Injection
An SQL injection vulnerability has been reported in dotCMS H2 Database. The vulnerability is due to insufficient validation of the inode parameter in HTTP request sent to the getCreateSortChildren function. A remote attacker could exploit this vulnerability by sending a malicious HTTP request to the target server.
Brocade Network Advisor FileReceiveServlet filename Directory Traversal (CVE-2016-8204)
A directory traversal vulnerability exists in Brocade Network Advisor. The vulnerability is due to lack of authentication and insufficient input validation in the FileReceiveServlet servlet when processing HTTP multipart form requests. A remote, unauthenticated attacker can exploit this vulnerability by sending a malicious HTTP request to the target system. Successful exploitation could result in arbitrary code execution with privileges of the SYSTEM.
Bugtraq: Joomla com_kunena Component – 'id' Parameter Sql Injection Vulnerability
Joomla com_kunena Component – ‘id’ Parameter Sql Injection Vulnerability