25Haz
Neiman Marcus confirms breach. Is the customer data already for sale?
Almost immediately after Neiman Marcus began informing customers about a data breach, the alleged data was offered for sale.
25Haz
How to remove PRNU from smartphone photos?
I am wondering if it is possible to use flats or some other method to remove PRNU (and, if possible, other device or model specific identifiers) from smartphone images, due to privacy concerns. I would like to find a simple application to …
25Haz
CVE-2024-6071 | PTC Creo Elements/Direct License Server up to 20.7.0.0 Web Interface heap-based overflow (icsa-24-177-02)
A vulnerability, which was classified as very critical, has been found in PTC Creo Elements and Direct License Server up to 20.7.0.0. This issue affects some unknown processing of the component Web Interface. The manipulation leads to heap-based buffer…
25Haz
CVE-2024-5215 | HT Mega Plugin up to 2.5.5 on WordPress Widget cross site scripting
A vulnerability classified as problematic was found in HT Mega Plugin up to 2.5.5 on WordPress. This vulnerability affects unknown code of the component Widget. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-5215…
25Haz
CVE-2024-5332 | Exclusive Addons for Elementor Plugin up to 2.6.9.8 on WordPress Card Widget cross site scripting
A vulnerability classified as problematic has been found in Exclusive Addons for Elementor Plugin up to 2.6.9.8 on WordPress. This affects an unknown part of the component Card Widget. The manipulation leads to cross site scripting.
This vulnerability…
25Haz
CVE-2024-37843 | Craft CMS up to 3.7.31 GraphQL API Endpoint sql injection
A vulnerability was found in Craft CMS up to 3.7.31. It has been rated as critical. Affected by this issue is some unknown functionality of the component GraphQL API Endpoint. The manipulation leads to sql injection.
This vulnerability is handled as C…
25Haz
CVE-2024-21741 | GigaDevice GD32E103C8T6 access control
A vulnerability was found in GigaDevice GD32E103C8T6. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls.
This vulnerability is known as CVE-2024-21741. Acce…
25Haz
CVE-2024-21740 | Artery AT32F415CBT7/AT32F421C8T7 access control
A vulnerability was found in Artery AT32F415CBT7 and AT32F421C8T7. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper access controls.
This vulnerability is traded as CVE-2024-21740. The attack need…
25Haz
CVE-2024-21739 | Geehy APM32F103VCT6 access control
A vulnerability was found in Geehy APM32F103CCT6, APM32F103RCT6, APM32F103RCT7 and APM32F103VCT6 and classified as critical. This issue affects some unknown processing. The manipulation leads to improper access controls.
The identification of this vul…
25Haz
CVE-2024-36819 | MAP-OS up to 4.45.0 Client Name cross site scripting
A vulnerability has been found in MAP-OS up to 4.45.0 and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument Client Name leads to cross site scripting.
This vulnerability was named CVE-2024-36819. The …
