Ken's Automated News Feed Aggregator
The package firefox before version 81.0-1 is vulnerable to multiple issues including arbitrary code execution, content spoofing, cross-site scripting and denial of service. Arch Linux Security Advisory ASA-202009-10 ====================================…
Continue ReadingThe FinSpy commercial spyware is back in recently observed campaigns against organizations and activists in Egypt. While the spyware previously targeted Windows, iOS and Android users, researchers have discovered these campaigns using new variants that…
Continue ReadingAn update that fixes four vulnerabilities is now available. SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:14502-1 Rating: important …
Continue ReadingThe FinSpy commercial spyware is back in recently observed campaigns against organizations and activists in Egypt. While the spyware previously targeted Windows, iOS and Android users, researchers have discovered these campaigns using new variants that…
Continue ReadingWhy it matters: The new strategy, reminiscent of spy operations during the Cold War, is much harder for big tech platforms to police and prevent. “Journalists have always been a target for those seeking to spread disinformation because media coverage i…
Continue ReadingExploit availability: No Description. CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a boundar…
Continue ReadingAn update that fixes four vulnerabilities is now available. SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:2759-1 Rating: important R…
Continue ReadingBug let hijack Firefox browsers on other phones over Wi-Fi – NIST’s new tool to help firms understand why staff fall for phishing – Almost 200 arrested in dark web crackdown.
Mozilla has fixed a security flaw that could allow anyone to take control of…
Continue Reading# Exploit Title: BigTree CMS 4.4.10 – Remote Code Execution # Google Dork: ” BigTree CMS ” # Date: 2020-25-09 # Exploit Author: SunCSR (ThienNV and HoaVT – Sun* Cyber Security Research) # Vendor Homepage: https://www.bigtreecms.org/ # Software Link: ht…
Continue ReadingExploit availability: No Description. CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a boundar…
Continue Reading