XSS

VMware fixed five vulnerabilities in Aria Operations productVMware fixed five vulnerabilities in Aria Operations product

VMware fixed five vulnerabilities in Aria Operations product

Virtualization giant VMware addressed multiple vulnerabilities in its Aria Operations product that can led to privilege escalation and XSS attacks.…

6 months ago
Critical XSS bug in Roundcube Webmail allows attackers to steal emails and sensitive dataCritical XSS bug in Roundcube Webmail allows attackers to steal emails and sensitive data

Critical XSS bug in Roundcube Webmail allows attackers to steal emails and sensitive data

Researchers warn of flaws in the Roundcube webmail software that could be exploited to steal sensitive information from target accounts.…

10 months ago
An XSS flaw in GitLab allows attackers to take over accounts<gwmw style="display:none;"></gwmw>An XSS flaw in GitLab allows attackers to take over accounts<gwmw style="display:none;"></gwmw>

An XSS flaw in GitLab allows attackers to take over accounts<gwmw style="display:none;"></gwmw>

GitLab addressed a high-severity cross-site scripting (XSS) vulnerability that allows unauthenticated attackers to take over user accounts. GitLab fixed a high-severity…

12 months ago
Cisco warns of XSS flaw in end-of-life small business routersCisco warns of XSS flaw in end-of-life small business routers

Cisco warns of XSS flaw in end-of-life small business routers

Cisco warns customers of Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Cross-Site scripting flaw. Cisco warns of…

1 year ago
XSS flaw in WordPress WP-Members Plugin can lead to script injectionXSS flaw in WordPress WP-Members Plugin can lead to script injection

XSS flaw in WordPress WP-Members Plugin can lead to script injection

A cross-site scripting vulnerability (XXS) in the WordPress WP-Members Membership plugin can lead to malicious script injection. Researchers from Defiant’s…

1 year ago
Multiple XSS flaws in Joomla can lead to remote code executionMultiple XSS flaws in Joomla can lead to remote code execution

Multiple XSS flaws in Joomla can lead to remote code execution

Joomla maintainers have addressed multiple vulnerabilities in the popular content management system (CMS) that can lead to execute arbitrary code.…

1 year ago
Multiple flaws in pfSense firewall can lead to arbitrary code executionMultiple flaws in pfSense firewall can lead to arbitrary code execution

Multiple flaws in pfSense firewall can lead to arbitrary code execution

Security flaws in Netgate pfSense firewall solution can potentially lead to arbitrary code execution on vulnerable devices. pfSense is a…

1 year ago
Zimbra zero-day exploited to steal government emails by four groupsZimbra zero-day exploited to steal government emails by four groups

Zimbra zero-day exploited to steal government emails by four groups

Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day (CVE-2023-37580) to steal emails from governments. Google Threat…

2 years ago
Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCSZimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS

Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS

Zimbra addressed a zero-day vulnerability exploited in attacks aimed at Zimbra Collaboration Suite (ZCS) email servers. Two weeks ago Zimbra…

2 years ago
WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacksWordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks

WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks

A reflected cross-site scripting vulnerability is the Advanced Custom Fields plugin for WordPress exposed over 2 million sites to hacking.…

2 years ago
Show more Posts