A vulnerability was found in Elastic Kibana up to 7.17.22/8.14.1. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/log_entries/summary. The manipulation leads to allocation of resources.
This vulnera…
Let’s consider host A and host B with network interfaces connected directly with an ethernet cable. It can also be assumed that the physical security of this cable is okay.
Neither host supports routing from other interfaces on the host.
I…
A former analyst working for the U.S. Central Intelligence Agency (CIA) pleaded guilty to transmitting top secret National Defense Information (NDI) to individuals who did not have the necessary authorization to receive it and attempted to cover up the…
Imagine receiving a penetration test report that leaves you with more questions than answers. Questions like, “Were all functionalities of the web app tested?” or ” Were there any security issues that could have been identified during testing?” often g…
A vulnerability was found in NEC WebSAM DeploymentManager up to 6.8. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper restriction of rendered ui layers.
This vulnerabil…
I have an application where a device needs a signed message "UTC date&time at time of signature", signed by an authority that it trusts. This is simpler than an RFC 3161 timestamp, which is made on request and includes a requ…
I keep getting reminders on various sites that I can switch my use of Android authenticator 2FAs to a passkey.
I just set it up for one site with my Android device and if I understand correctly, Google has full control over the passkey?
Wh…
A vulnerability was found in WP-BibTeX Plugin up to 3.0.1 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery.
This vulnerability is traded as CVE-2024-12005. It is…
A vulnerability was found in wp-greet Plugin up to 6.2 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery.
The identification of this vulnerability is CVE-2024-1…
A vulnerability has been found in Link Library Plugin up to 7.7.2 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting.
This vulnerability was named CVE-2024-13404. The att…
