VLC For iOS Insecure Direct Object Reference
March 27th, 2020 📆 | 6359 Views ⚑
VLC for iOS was vulnerable to an unauthenticated insecure direct object reference vulnerability allowing for an attacker to compromise media.
Browsing the "insecure" Tag
Tagged with: advisory • CSRF • direct • exploit • insecure • ios • object • overflow • reference • scanner • security • VLC • vulnerability • whitepaper • XSS
Insecure API Cloud Computing: The Causes & Solutions
March 25th, 2020 📆 | 2299 Views ⚑
In an ideal world, APIs are intended to streamline cloud computing processes. But it’s not always that black and white.
Tagged with: API • causes • cloud • computing • insecure • solutions
Report: Shadow IoT is prevalent, insecure
March 25th, 2020 📆 | 6854 Views ⚑
While the data protection pitfalls around the Internet of Things are undeniably numerous, new research from security vendor Zscaler underlines
Tagged with: insecure • IoT • prevalent • report • shadow
2020 cybersecurity risks: Insecure security tools, supply chains, abandonware
March 23rd, 2020 📆 | 2442 Views ⚑
Considerable time and money are invested into looking for dangerous vulnerabilities in the most commonly used elements of IT infrastructure.
Tagged with: abandonware • chains • cybersecurity • insecure • risks • security • supply • tools
ZoneAlarm TrueVector Internet Monitor Insecure NTFS Permissions ↭
March 18th, 2020 📆 | 5302 Views ⚑
————————————————————————ZoneAlarm TrueVector Internet Monitor service insecure NTFS permissionsvulnerability————————————————————————Yorick Koster, December 2019 ————————————————————————Abstract————————————————————————A vulnerability was found in the TrueVector Internet Monitor
Tagged with: advisory • CSRF • exploit • insecure • internet • monitor • NTFS • overflow • permissions • scanner • security • truevector • vulnerability • whitepaper • XSS • zonealarm
OctoberCMS Insecure Dependencies ↭
March 15th, 2020 📆 | 4531 Views ⚑
OctoberCMS is a CMS similar to WordPress, but with much less “fluff”. SECURELI.com’s team identified the latest version of OctoberCMS
Tagged with: advisory • CSRF • dependencies • exploit • insecure • octobercms • overflow • scanner • security • vulnerability • whitepaper • XSS
Hundreds Of Thousands Of Websites To Be Marked As Insecure In Latest Firefox Update – Response From Industry Expert
March 12th, 2020 📆 | 3763 Views ⚑
Firefox’s latest update and its implications for the hundreds of thousands of websites that still use the outdated TLS 1
Tagged with: expert • firefox • hundreds • industry • insecure • latest • marked • response • thousands • update • websites
GCHQ’s infosec arm has 3 simple tips to secure those insecure smart home gadgets • The Register
March 3rd, 2020 📆 | 2055 Views ⚑
Britain’s National Cyber Security Centre (NCSC) wants owners of baby monitors and smart CCTV cameras to take some basic security
Tagged with: Arm • gadgets • GCHQs • home • infosec • insecure • register • secure • simple • smart • those • tips
IoTGoat – A Deliberately Insecure Firmware Based On OpenWrt
February 29th, 2020 📆 | 4798 Views ⚑
The IoTGoat Project is a deliberately insecure based on OpenWrt. The project’s goal is to teach users about the most
Tagged with: based • cybersecurity • deliberately • Ethical Hacking • firmware • hack android • hack app • hack wordpress • hacker news • hacking • hacking tools for windows • insecure • iotgoat • keylogger • kit • kitploit • openwrt • password brute force • Penetration Testing • pentest • pentest android • pentest linux • pentest toolkit • pentest tools • spy tool kit • spyware • tools
Apache James Server 2.3.2 – Insecure User Creation Arbitrary File Write (Metasploit)
February 29th, 2020 📆 | 2239 Views ⚑
## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = NormalRanking include
Tagged with: apache • arbitrary • creation • CVE-2015-7611 • File • insecure • james • linux • metasploit • remote • server • user • write
NTP Server Time – Tired of Inaccurate and Insecure Time
February 22nd, 2020 📆 | 8423 Views ⚑
The internet has been a marvellous resource for business over the last decade. High speed access and the proliferation of
Tagged with: firewall • inaccurate • insecure • NTP • server • Time • tired
Apache James Server 2.3.2 Insecure User Creation / Arbitrary File Write
February 21st, 2020 📆 | 4941 Views ⚑
Change Mirror Download ### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework##class MetasploitModule < Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::Tcp
Tagged with: advisory • apache • arbitrary • creation • CSRF • exploit • File • insecure • james • overflow • scanner • security • server • user • vulnerability • whitepaper • write • XSS
Shipping is so insecure we could have driven off in an oil rig, says Pen Test Partners
February 18th, 2020 📆 | 6896 Views ⚑
Penetration testers looking at commercial shipping and oil rigs discovered a litany of flaws and vulnerabilities – including one set
Tagged with: could • driven • insecure • partners • shipping
Google Plans to Floor Insecure Downloads in Chrome 83
February 11th, 2020 📆 | 6012 Views ⚑
SHARE In April 2019, with a view to prevent abuse, Google engineers showed the desire to block certain HTTP file
Tagged with: chrome • downloads • floor • google • insecure • plans
013: Insecure Data Storage Inside Temporary Files
February 8th, 2020 📆 | 6827 Views ⚑
Android application hacking and pen testing tutorials for free, best mobile application hacking free tutorials, mobile application pen testing video
Tagged with: 2020 free course • Android hacking • data • files • Free courses • hacking course • Hacking in 2020 • insecure • inside • pentesting tutorials • storage • temporary
011: Insecure Data Storage
February 6th, 2020 📆 | 3920 Views ⚑
Android application hacking and pen testing tutorials for free, best mobile application hacking free tutorials, mobile application pen testing video
Tagged with: 2020 free course • Android hacking • data • Free courses • hacking course • Hacking in 2020 • insecure • pentesting tutorials • storage
009: Install DIVA Damn insecure and vulnerable App
February 6th, 2020 📆 | 8031 Views ⚑
Android application hacking and pen testing tutorials for free, best mobile application hacking free tutorials, mobile application pen testing video
Tagged with: 2020 free course • Android hacking • app • Damn • Diva • Free courses • hacking course • Hacking in 2020 • insecure • install • pentesting tutorials • vulnerable
(IN)SECURE Magazine Issue 1
January 31st, 2020 📆 | 2323 Views ⚑
Tagged with: insecure • issue • magazine • secure
Advanced System Repair Pro 1.9.1.7 – Insecure File Permissions
January 13th, 2020 📆 | 3540 Views ⚑
# Exploit Title: Advanced System Repair Pro 1.9.1.7 - Insecure File Permissions # Exploit Author: ZwX # Exploit Date: 2020-01-12
Tagged with: advanced • insecure • permissions • repair • system
NextVPN v4.10 – Insecure File Permissions
December 31st, 2019 📆 | 7670 Views ⚑
# Exploit Title: NextVPN v4.10 - Insecure File Permissions # Date: 2019-12-23 # Exploit Author: SajjadBnd # Contact: [email protected] #
Tagged with: insecure • nextvpn • permissions
How to secure Ring smart doorbells, the most insecure IOT device
December 19th, 2019 📆 | 6885 Views ⚑
Among the wide variety of Internet of Things (IOT) devices currently available, smart doorbells and security cameras are among the
Tagged with: device • doorbells • insecure • secure • smart
Telerik UI – Remote Code Execution via Insecure Deserialization
December 18th, 2019 📆 | 5368 Views ⚑
See the full write-up at Bishop Fox, CVE-2019-18935: https://know.bishopfox.com/research/cve-2019-18935-remote-code-execution-in-telerik-ui, for a complete walkthrough of vulnerability and exploit details for this
Tagged with: deserialization • execution • insecure • remote • telerik
Piles of insecure smart toys fill retailers’ shelves • The Register
December 11th, 2019 📆 | 2400 Views ⚑
It seems to come around quicker every year – the failure of so-called smart toys to meet the most basic
Tagged with: insecure • piles • register • retailers • shelves • smart
Piles of insecure smart toys fill retailers’ shelves • DigitalMunition
December 11th, 2019 📆 | 4506 Views ⚑
It seems to come around quicker every year – the failure of so-called smart toys to meet the most basic
Tagged with: digitalmunition • insecure • piles • retailers • shelves • smart
Popular
Trickbot campaign targets Coronavirus fears in Italy… March 9, 2020 The operators of a Trickbot spam campaign have found a…
Incorporation of Private Limited Company March 10, 2020 Features of Private Limited Company: Separate Legal Existence Annual General…
Liz Crokin Claims Celebrities Are Getting… March 18, 2020 Liz Crokin Claims Celebrities Are Getting Coronavirus From Tainted 'Adrenochrome…
Why the Wawa Data Breach Serves as a Warning That… March 10, 2020 Wawa’s nine-month long network breach resulted in the theft of…
First Primarily Digital US Census Is Set To Roll Out… March 2, 2020 First Primarily Digital US Census Is Set To Roll Out…
Windows 10 Version 2004 Receives Build 19041.153 (KB4541738) March 13, 2020 Windows 10 Build 19041.153 is available for Windows Insiders in…
Otterbein University under malware attack days after… March 12, 2020 Otterbein University under malware attack days after switching to online…
Comments