For individuals | HunCERT group

27 Aug 2024

Biztonsági szemle

Threat Group 'Bling Libra' Pivots to Extortion for Cloud Attacks

The ShinyHunters attackers are skipping selling stolen data on hacker forums in favor of using deadline-driven ransom notes for financial gain.

darkreading.com

27 Aug 2024

Biztonsági szemle

The Changing Risk Landscape: CISO Liability - Darren Shou - BSW #362

scmagazine.com

27 Aug 2024

Biztonsági szemle

Arrest of Telegram CEO sparks cyberattacks against French websites

Hacktivists retaliated against the French government in a series of DDoS attacks.

scmagazine.com

27 Aug 2024

Riasztás

NA - CVE-2024-45321 - The App::cpanminus package through 1.7047 for...

The App::cpanminus package through 1.7047 for Perl downloads code via insecure HTTP, enabling code execution for network attackers.

security-database.com

27 Aug 2024

Riasztás

Medium - CVE-2024-6688 - The Oxygen Builder plugin for WordPress is...

The Oxygen Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the oxy_save_css_from_admin AJAX action in all versions up to, and...

security-database.com

27 Aug 2024

Riasztás

NA - CVE-2024-7125 - Authentication Bypass vulnerability in Hitachi...

Authentication Bypass vulnerability in Hitachi Ops Center Common Services.This issue affects Hitachi Ops Center Common Services: from 10.9.3-00 before 11.0.2-01.

security-database.com

27 Aug 2024

Riasztás

Medium - CVE-2024-6804 - The Jeg Elementor Kit plugin for WordPress is...

The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 2.6.7 due to insufficient input sanitization and...

security-database.com

27 Aug 2024

Riasztás

Medium - CVE-2024-7304 - The Ninja Tables – Easiest Data Table Builder...

The Ninja Tables – Easiest Data Table Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 5.0.12 due to insufficient...

security-database.com

27 Aug 2024

Riasztás

High - CVE-2024-41173 - The IPC-Diagnostics package included in...

The IPC-Diagnostics package included in TwinCAT/BSD is vulnerable to a local authentication bypass by a low privileged attacker.

security-database.com

27 Aug 2024

Riasztás

NA - CVE-2024-41174 - The IPC-Diagnostics package in TwinCAT/BSD is...

The IPC-Diagnostics package in TwinCAT/BSD is susceptible to improper input neutralization by a low-privileged local attacker.

security-database.com

Phone:	+36 1 279 6222 9am to 4pm
E-mail:	@email
Address:	H-1111 Budapest, Kende u. 13-17.