High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 8theme--XStore Core Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation.This issue affects XStore Core:…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info academy_lms -- academy_lms Missing Authorization vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through 1.9.16.…
Today, CISA, in partnership with the Federal Bureau of Investigation (FBI), the Department of Health and Human Services (HHS), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released joint…
SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These…
Today, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), together with CISA, the Canadian Centre for Cyber Security (CCCS), the United Kingdom’s National Cyber Security Centre (NCSC-UK), and…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 8theme -- xstore Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in…
Today, CISA and the Federal Bureau of Investigation (FBI) released a joint Secure by Design Alert, Eliminating Directory Traversal Vulnerabilities in Software. This Alert was crafted in response to recent…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info abdul_hakeem -- build_app_online Improper Authentication vulnerability in Abdul Hakeem Build App Online allows Privilege Escalation.This issue affects…
High Vulnerabilities PrimaryVendor -- Product Description Published CVSS Score Source & Patch Info 10web -- slider_by_10web Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Slider…
Cisco has released security advisories for vulnerabilities in the Cisco integrated management controller. A remote cyber threat actor could exploit one of these vulnerabilities to take control of an affected…
