It was found that the Apache Syncope EndUser UI login page prio to 2.0.15 and 2.1.6 reflects the successMessage parameters. By this mean, a …
A vulnerability in the HTTP/HTTPS service used by J-Web, Web Authentication, Dynamic-VPN (DVPN), Firewall Authentication Pass-Through with …
CRLF injection vulnerability in Network Center in Synology Router Manager (SRM) before 1.2.3-8017-2 allows remote attackers to cause a …
Calibre-Web 0.6.6 allows authentication bypass because of the ‘A0Zr98j/3yX R~XHH!jmN]LWX/,?RT’ hardcoded secret …
An issue was discovered in Roundcube Webmail before 1.4.4. A CSRF attack can cause an authenticated user to be logged out because POST was …
An issue was discovered in Roundcube Webmail before 1.4.4. There is a cross-site scripting (XSS) vulnerability in rcube_washtml.php because …
Killi, a consumer-led privacy application, in partnership with 0ptimus Analytics, a data science and technology company, announced the …
To improve the default security for all AWS customers, we are adding a default password policy for AWS Identity and Access Management (IAM) …
ThousandEyes, the Internet and Cloud Intelligence company, announced that customer success veteran Trevis Schuh has joined the management …
With demand for remote-work technology surging, it’s a good time to ask seasoned remote pros about their own preferred tools. When we …
A serious hacking campaign is currently underway, and tens of companies have been hacked already, ZDNet has learned from security …
Experts say Russia, Iran and China likely to be behind cyber-attacks on universities Coronavirus – latest updates See all our coronavirus …
●●●
NVD
EXPLOITS
SECURELIST