Search cyberveille.decio.ch

Security Flaw in WP-Members Plugin Leads to Script Injection

Attackers could exploit a high-severity cross-site Scripting (XSS) vulnerability in the WP-Members Membership WordPress plugin to inject arbitrary scripts into web pages, according to an advisory from security firm Defiant.

#securityweek #EN #2024 #plugin #WP #Wordpress #WP-Members #Injection #vulnerability

·securityweek.com·Apr 4, 2024

Security Flaw in WP-Members Plugin Leads to Script Injection

Thinking about the security of AI systems

Why established cyber security principles are still important when developing or implementing machine learning models.

#NCSC.GOV.UK #AI #secuity #ai-security #injection #attacks #data-poisoning

·ncsc.gov.uk·Sep 6, 2023

Thinking about the security of AI systems

CVE-2023-34362: MOVEit Transfer SQL Injection Vulnerability Threat Brief

On May 31, Progress Software posted a notification alerting customers of a critical Structured Query Language injection (SQLi) vulnerability (CVE-2023-34362) in their MOVEit Transfer product. MOVEit Transfer is a managed file transfer (MFT) application intended to provide secure collaboration and automated file transfers of sensitive data.

#paloaltonetworks #EN #2023 #MOVEit #SQL #Injection #Vulnerability #CVE-2023-34362

·unit42.paloaltonetworks.com·Jun 7, 2023

CVE-2023-34362: MOVEit Transfer SQL Injection Vulnerability Threat Brief

Analysis of Pre-Auth RCE in Sophos Web Appliance (CVE-2023-1671)

CVE-2023-1671 is a pre-authenticated command injection in Sophos Web Appliance. In this blog post, VulnCheck researchers analyze the vulnerability and develop a proof of concept (PoC) for it.

#vulncheck #EN #2023 #analysis #vulnerability #Sophos #CVE-2023-1671 #pre-authenticated #command #injection

·vulncheck.com·Apr 22, 2023

Analysis of Pre-Auth RCE in Sophos Web Appliance (CVE-2023-1671)

‘InTheBox’ Web Injects Targeting Android Banking Applications Worldwide

Cyble analyzes 'InTheBox' as part of its thorough research on Web Injects and their role in targeting Android Banking applications worldwide,

#cyble #EN #2023 #analysis #InTheBox #Android #Banking #injection

·blog.cyble.com·Jan 31, 2023

‘InTheBox’ Web Injects Targeting Android Banking Applications Worldwide

Cyble analyzes 'InTheBox' as part of its thorough research on Web Injects and their role in targeting Android Banking applications worldwide,

#cyble #EN #2023 #analysis #InTheBox #Android #Banking #injection

·blog.cyble.com·Jan 31, 2023

‘InTheBox’ Web Injects Targeting Android Banking Applications Worldwide

Resolved RCE in Sophos Firewall (CVE-2022-3236)

A code injection vulnerability allowing remote code execution was discovered in the User Portal and Webadmin of Sophos Firewall. The vulnerability has been fixed.

#sophos #EN #RCE #firewall #CVE-2022-3236 #injection #Webadmin

·sophos.com·Sep 26, 2022

Resolved RCE in Sophos Firewall (CVE-2022-3236)

A code injection vulnerability allowing remote code execution was discovered in the User Portal and Webadmin of Sophos Firewall. The vulnerability has been fixed.

#sophos #EN #RCE #firewall #CVE-2022-3236 #injection #Webadmin

·sophos.com·Sep 26, 2022

Resolved RCE in Sophos Firewall (CVE-2022-3236)

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

This post describes how I took over an Azure Cloud Shell trusted domain and leveraged it to inject and execute commands in other users’ terminals.

#lightspin #EN #2022 #Azure #Cloud #Shell #injection #terminals #IoCs #Analysis #Tokens #steal

·blog.lightspin.io·Sep 21, 2022

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

This post describes how I took over an Azure Cloud Shell trusted domain and leveraged it to inject and execute commands in other users’ terminals.

#lightspin #EN #2022 #Azure #Cloud #Shell #injection #terminals #IoCs #Analysis #Tokens #steal

·blog.lightspin.io·Sep 21, 2022

Azure Cloud Shell Command Injection Stealing User’s Access Tokens

Process injection: breaking all macOS security layers with a single vulnerability ·

In macOS 12.0.1 Monterey, Apple fixed CVE-2021-30873. This was a process injection vulnerability affecting (essentially) all macOS AppKit-based applications. We reported this vulnerability to Apple, along with methods to use this vulnerability to escape the sandbox, elevate privileges to root and bypass the filesystem restrictions of SIP.

#sector7 #EN #2022 #macOS #CVE-2021-30873 #Process #injection

·sector7.computest.nl·Aug 15, 2022

Process injection: breaking all macOS security layers with a single vulnerability ·

In macOS 12.0.1 Monterey, Apple fixed CVE-2021-30873. This was a process injection vulnerability affecting (essentially) all macOS AppKit-based applications. We reported this vulnerability to Apple, along with methods to use this vulnerability to escape the sandbox, elevate privileges to root and bypass the filesystem restrictions of SIP.

#sector7 #EN #2022 #macOS #CVE-2021-30873 #Process #injection

·sector7.computest.nl·Aug 15, 2022

Process injection: breaking all macOS security layers with a single vulnerability ·

In macOS 12.0.1 Monterey, Apple fixed CVE-2021-30873. This was a process injection vulnerability affecting (essentially) all macOS AppKit-based applications. We reported this vulnerability to Apple, along with methods to use this vulnerability to escape the sandbox, elevate privileges to root and bypass the filesystem restrictions of SIP.

#sector7 #EN #2022 #macOS #CVE-2021-30873 #Process #injection

·sector7.computest.nl·Aug 15, 2022

Process injection: breaking all macOS security layers with a single vulnerability ·