Browsing Category: Vulnerabilities

android_bypass_flaw

Second Same-Origin Policy Bypass Flaw Haunts Android Browser

There is another same-origin policy bypass vulnerability in the Android browser in versions prior to 4.4 that allows an attacker to steal data from a user’s browser.

Read more...

joomla_patch

Joomla Re-Issues Security Update After Patches Glitch

A security update for the Joomla content management system was pulled and re-issued after problems with the first set of patches for a remote file inclusion and denial of service vulnerability were discovered.

Read more...

critical infrastructure security

Schneider Electric Fixes Remotely Exploitable Flaw in 22 Different Products

There’s a remotely exploitable directory traversal vulnerability in more than 20 individual products from Schneider Electric that can enable an attacker to gain control of an affected machine.

Read more...

BASH

OpenVPN Vulnerable to Shellshock Bash Vulnerability

OpenVPN was found to be vulnerable to the Shellshock vulnerability in Bash as well. Fredrik Stromberg of Mullvad said the vulnerability is dangerous because it’s pre-authentication in OpenVPN.

Read more...

shutterstock_197803430

WPScan Vulnerability Database a New WordPress Security Resource

Researcher Ryan Dewhurst released the WPScan Vulnerability Database, a database housing security vulnerabilities in WordPress core code, plug-ins and themes. It’s available for pen-testers, WordPress administrators and developers.

Read more...