A vulnerability was found in OTRS and OTRS Community Edition up to 7.0.x/8.0.x/2023.x/2024.x/2025.1.x. It has been declared as critical. This vulnerability affects unknown code of the component HTTP Response Header Handler. The manipulation leads to un…
A vulnerability was found in OTRS and OTRS Community Edition up to 7.0.x/8.0.x/2023.x/2024.x/2025.1.x. It has been classified as critical. This affects an unknown part of the component Generic Interface Module. The manipulation leads to improper privil…
A vulnerability was found in OTRS and OTRS Community Edition 7.0.x/8.0.x/2023.x/2024.x and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to sensitive information in log files.
This vulnerabilit…
A vulnerability has been found in OTRS 7.0.x/8.0.x/2023.x/2024.x and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to sensitive cookie without secure attribute.
This vulnerability is know…
A vulnerability, which was classified as problematic, was found in IBM InfoSphere Master Data Management 11.6/12.0/14.0. Affected is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2023-46187. I…
Last week on Malwarebytes Labs: Last week on ThreatDown: Stay safe!
A previously unknown threat actor has been observed copying the tradecraft associated with the Kremlin-aligned Gamaredon hacking group in its cyber attacks targeting Russian-speaking entities.
The campaign has been attributed to a threat cluster dubbed…
A vulnerability, which was classified as problematic, has been found in Altra Side Menu Plugin up to 2.0 on WordPress. This issue affects some unknown processing. The manipulation leads to cross-site request forgery.
The identification of this vulnera…
A vulnerability classified as critical was found in Social Share Buttons Plugin up to 2.7 on WordPress. This vulnerability affects unknown code. The manipulation leads to path traversal.
This vulnerability was named CVE-2024-13117. The attack can be i…
A vulnerability classified as problematic has been found in WP Triggers Lite Plugin up to 2.5.3 on WordPress. This affects an unknown part. The manipulation leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-13095. It…
