Security
Headlines
HeadlinesLatestCVEs

Tag

#windows

CVE-2023-34839: CVE-2023-34839/README.md at main · sahiloj/CVE-2023-34839

A Cross Site Request Forgery (CSRF) vulnerability in Issabel issabel-pbx v.4.0.0-6 allows a remote attacker to gain privileges via a Custom CSRF exploit to create new user function in the application.

CVE
Open in Source
#csrf#vulnerability#windows#git#auth
Apache Druid JNDI Injection Remote Code Execution

This Metasploit module is designed to exploit the JNDI injection vulnerability in Druid. The vulnerability specifically affects the indexer/v1/sampler interface of Druid, enabling an attacker to execute arbitrary commands on the targeted server. The vulnerability is found in Apache Kafka clients versions ranging from 2.3.0 to 3.3.2. If an attacker can manipulate the sasl.jaas.config property of any of the connector's Kafka clients to com.sun.security.auth.module.JndiLoginModule, it allows the server to establish a connection with the attacker's LDAP server and deserialize the LDAP response. This provides the attacker with the capability to execute java deserialization gadget chains on the Kafka connect server, potentially leading to unrestricted deserialization of untrusted data or even remote code execution (RCE) if there are relevant gadgets in the classpath. To facilitate the exploitation process, this module will initiate an LDAP server that the target server needs to connect to in...

CVE-2023-2818: ITM Windows Agent Insecure Filesystem Permissions | Proofpoint US

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected.

MyBB Favicon 1.0 Cross Site Scripting

MyBB Favicon plugin version 1.0 suffers from a cross site scripting vulnerability.

New Ongoing Campaign Targets npm Ecosystem with Unique Execution Chain

Cybersecurity researchers have discovered a new ongoing campaign aimed at the npm ecosystem that leverages a unique execution chain to deliver an unknown payload to targeted systems. "The packages in question seem to be published in pairs, each pair working in unison to fetch additional resources which are subsequently decoded and/or executed," software supply chain security firm Phylum said in

PrestaShop Winbiz Payment Improper Limitation

PrestaShop Winbiz Payment module suffers from an improper limitation of a Pathname to a restricted directory.

Microsoft Windows 11 22h2 Kernel Privilege Escalation

Microsoft Microsoft Windows 11 version 22h2 suffers from a kernel privilege escalation vulnerability.

New Mockingjay Process Injection Technique Could Let Malware Evade Detection

A new process injection technique dubbed Mockingjay could be exploited by threat actors to bypass security solutions to execute malicious code on compromised systems. "The injection is executed without space allocation, setting permissions or even starting a thread," Security Joes researchers Thiago Peixoto, Felipe Duarte, and  Ido Naor said in a report shared with The Hacker News. "The

Azure Apache Ambari 2302250400 Spoofing

Azure Apache Ambari version 2302250400 suffers from a spoofing vulnerability.

Xenforo 2.2.13 Cross Site Scripting

Xenforo version 2.2.13 suffers from a persistent cross site scripting vulnerability.