Pacosite's Blog

Comunicaciones, Linux, Tecnología e Internet

[webapps] WordPress Plugin Supsystic Contact Form 1.7.5 – Multiple Vulnerabilities

Posted on February 8, 2021 by Frank Cisco

WordPress Plugin Supsystic Contact Form 1.7.5 – Multiple Vulnerabilities

from Exploit-DB.com RSS Feed https://ift.tt/2Z1IHmZ
via IFTTT

[webapps] WordPress Plugin Supsystic Data Tables Generator 1.9.96 – Multiple Vulnerabilities

Posted on February 8, 2021 by Frank Cisco

WordPress Plugin Supsystic Data Tables Generator 1.9.96 – Multiple Vulnerabilities

from Exploit-DB.com RSS Feed https://ift.tt/3p0TVTB
via IFTTT

[webapps] WordPress Plugin Supsystic Digital Publications 1.6.9 – Multiple Vulnerabilities

Posted on February 8, 2021 by Frank Cisco

WordPress Plugin Supsystic Digital Publications 1.6.9 – Multiple Vulnerabilities

from Exploit-DB.com RSS Feed https://ift.tt/2YUPjUn
via IFTTT

[local] Microsoft Internet Explorer 11 32-bit – Use-After-Free

Posted on February 8, 2021 by Frank Cisco

Microsoft Internet Explorer 11 32-bit – Use-After-Free

from Exploit-DB.com RSS Feed https://ift.tt/2N0gSsF
via IFTTT

[webapps] WordPress Plugin Supsystic Membership 1.4.7 – ‘sidx’ SQL injection

Posted on February 8, 2021 by Frank Cisco

WordPress Plugin Supsystic Membership 1.4.7 – ‘sidx’ SQL injection

from Exploit-DB.com RSS Feed https://ift.tt/3jqnxZo
via IFTTT

[webapps] WordPress Plugin Supsystic Newsletter 1.5.5 – ‘sidx’ SQL injection

Posted on February 8, 2021 by Frank Cisco

WordPress Plugin Supsystic Newsletter 1.5.5 – ‘sidx’ SQL injection

from Exploit-DB.com RSS Feed https://ift.tt/3js8HBz
via IFTTT

[webapps] Alt-N MDaemon webmail 20.0.0 – ‘file name’ Stored Cross Site Scripting (XSS)

Posted on February 8, 2021 by Frank Cisco

Alt-N MDaemon webmail 20.0.0 – ‘file name’ Stored Cross Site Scripting (XSS)

from Exploit-DB.com RSS Feed https://ift.tt/2N3nJBB
via IFTTT

[webapps] Alt-N MDaemon webmail 20.0.0 – ‘Contact name’ Stored Cross Site Scripting (XSS)

Posted on February 8, 2021 by Frank Cisco

Alt-N MDaemon webmail 20.0.0 – ‘Contact name’ Stored Cross Site Scripting (XSS)

from Exploit-DB.com RSS Feed https://ift.tt/3q0pez8
via IFTTT

Barcode Scanner, con 10 millones de descargas, contiene un troyano que muestra anuncios en el navegador

Posted on February 8, 2021 by Frank Cisco

Barcode Scanner, con 10 millones de descargas, contiene un troyano que muestra anuncios en el navegador

Malwarebytes ha detectado un nuevo troyano en ‘Barcode Scanner’, una de las aplicaciones para escanear códigos de barras con más instalaciones en Google Play Store. Con más de 10 millones de instalaciones, Google ha eliminado de inmediato dicha app, aunque se recomienda a aquellos usuarios que la tenga instalada que la eliminen de inmediato.

Pero, ¿cómo ha sido posible que haya más de 10 millones de instalaciones en una aplicación maliciosa? Aquí viene el punto más curioso: el código de la app estaba limpio, hasta que se introdujo un troyano a través de una nueva actualización.

{“file”:”https://webediaespana.video.content-hub.app/default/video/2e/4d/f2/5e281f503bef073363/default-standard-720.mp4″,”image”:”https://webediaespana.delivery.content-hub.app/image/2c/e6/92/5e281f773bef07337c/original/ransomware.jpeg”}

Continue reading →

[local] AMD Fuel Service – ‘Fuel.service’ Unquote Service Path

Posted on February 8, 2021 by Frank Cisco

AMD Fuel Service – ‘Fuel.service’ Unquote Service Path

from Exploit-DB.com RSS Feed https://ift.tt/3cRHpn2
via IFTTT