OpenEMR 5.0.0 – Remote Code Execution (Authenticated)
from Exploit-DB.com RSS Feed https://ift.tt/3v8uTF2
via IFTTT
Category Archives: Cybersecurity
[webapps] Microsoft SharePoint Server 16.0.10372.20060 – ‘GetXmlDataFromDataSource’ Server-Side Request Forgery (SSRF)
Microsoft SharePoint Server 16.0.10372.20060 – ‘GetXmlDataFromDataSource’ Server-Side Request Forgery (SSRF)
from Exploit-DB.com RSS Feed https://ift.tt/3gp8RZs
via IFTTT
[webapps] Cerberus FTP Web Service 11 – ‘svg’ Stored Cross-Site Scripting (XSS)
Cerberus FTP Web Service 11 – ‘svg’ Stored Cross-Site Scripting (XSS)
from Exploit-DB.com RSS Feed https://ift.tt/3wewDOz
via IFTTT
[webapps] Accela Civic Platform 21.1 – ‘servProvCode’ Cross-Site-Scripting (XSS)
Accela Civic Platform 21.1 – ‘servProvCode’ Cross-Site-Scripting (XSS)
from Exploit-DB.com RSS Feed https://ift.tt/3iw5uSX
via IFTTT
‘Beware the Lady Named Katie’
A semester-long course boiled down to two minutes and 45 seconds.
from Dark Reading: https://ift.tt/3ziP3Q0
via IFTTT
New Ransomware Group Claiming Connection to REvil Gang Surfaces
‘Prometheus’ is the latest example of how the ransomware-as-a-service model is letting new gangs scale up operations quickly.
from Dark Reading: https://ift.tt/3gaq8GQ
via IFTTT
Healthcare Device Security Firm COO Charged with Hacking Medical Center
Vikas Singla, chief operating officer of security firm that provides products and services to the healthcare industry, faces charges surrounding a cyberattack he allegedly conducted against Duluth, Ga.-based Gwinnett Medial Center.
from Dark Reading: https://ift.tt/3ghJmul
via IFTTT
‘Fancy Lazarus’ Criminal Group Launches DDoS Extortion Campaign
The group has re-emerged after a brief hiatus with a new email campaign threatening a DDoS attack against businesses that don’t pay ransom.
from Dark Reading: https://ift.tt/35dov4E
via IFTTT
JBS CEO Says Company Paid $11M in Ransom
The decision to pay attackers was a difficult one, CEO Andre Nogueira said in a statement.
from Dark Reading: https://ift.tt/3godBhY
via IFTTT
Google fixes actively exploited Chrome zero‑day
The latest Chrome update patches a bumper crop of security flaws across the browser’s desktop versions
The post Google fixes actively exploited Chrome zero‑day appeared first on WeLiveSecurity
from WeLiveSecurity https://ift.tt/3wdBz6c
via IFTTT
Pacosite's Blog 