28Mar
Update Chrome now! Google patches possible drive-by vulnerability
Google has released an update for Chrome to fix seven security vulnerabilities.
28Mar
Behind the Scenes: The Art of Safeguarding Non-Human Identities
In the whirlwind of modern software development, teams race against time, constantly pushing the boundaries of innovation and efficiency. This relentless pace is fueled by an evolving tech landscape, where SaaS domination, the proliferation of microser…
28Mar
New ZenHammer Attack Bypasses RowHammer Defenses on AMD CPUs
Cybersecurity researchers from ETH Zurich have developed a new variant of the RowHammer DRAM (dynamic random-access memory) attack that, for the first time, successfully works against AMD Zen 2 and Zen 3 systems despite mitigations such as Target Row R…
28Mar
CVE-2024-3042 | SourceCodester Simple Subscription Website 1.0 manage_user.php id sql injection
A vulnerability was found in SourceCodester Simple Subscription Website 1.0 and classified as critical. This issue affects some unknown processing of the file manage_user.php. The manipulation of the argument id leads to sql injection.
The identificat…
28Mar
CVE-2024-3041 | Netentsec NS-ASG Application Security Gateway 6.3 listloginfo.php sql injection
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection.
This vulnerabil…
28Mar
CVE-2024-3040 | Netentsec NS-ASG Application Security Gateway 6.3 /admin/list_crl_conf CRLId sql injection
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_crl_conf. The manipulation of the argument CRLId leads to sql injection.
This vulne…
28Mar
CVE-2024-30421 | Pixelite Events Manager Plugin up to 6.4.7.1 on WordPress cross-site request forgery
A vulnerability, which was classified as problematic, has been found in Pixelite Events Manager Plugin up to 6.4.7.1 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery.
This vulnera…
28Mar
CVE-2024-30422 | WPVibes Elementor Addon Elements Plugin up to 1.13.1 on WordPress cross site scripting
A vulnerability classified as problematic was found in WPVibes Elementor Addon Elements Plugin up to 1.13.1 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability is…
28Mar
CVE-2024-3039 | Shanghai Brad Technology BladeX 3.4.0 API export-user sql injection
A vulnerability classified as critical has been found in Shanghai Brad Technology BladeX 3.4.0. Affected is an unknown function of the file /api/blade-user/export-user of the component API. The manipulation with the input updatexml(1,concat(0x3f,md5(12…
28Mar
Telegram Offers Premium Subscription in Exchange for Using Your Number to Send OTPs
In June 2017, a study of more than 3,000 Massachusetts Institute of Technology (MIT) students published by the National Bureau for Economic Research (NBER) found that 98% of them were willing to give away their friends’ email addres…
