Tag
#vulnerability
Queuing Simple Chatbot version 1.0 suffers from a remote shell upload vulnerability.
Profiling System version 1.0 suffers from a remote shell upload vulnerability.
Passion Responsive Blogging version 1.0 suffers from a cross site scripting vulnerability.
Online Survey System version 1.0 suffers from cross site scripting and remote file inclusion vulnerabilities.
Online Birth Certificate System version 1.0 suffers from an ignored default credential vulnerability.
Medical Card Generations System version 1.0 suffers from an ignored default credential vulnerability.
Emergency Ambulance Hiring Portal version 1.0 suffer from a WYSIWYG code injection vulnerability.
Printable Staff ID Card Creator System version 1.0 suffers from an insecure direct object reference vulnerability.
A veritable grab bag of tools used to access critical infrastructure networks are wildly insecure, and they're blobbing together to create a widening attack surface.
An attack dubbed "WordDrone" that uses an old flaw to install a backdoor could be related to previously reported cyber incidents against Taiwan's military and satellite industrial supply chain.