Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Microsoft Expands Access to Windows Recall AI Feature
Description: The activity-recording capability has drawn concerns from the security community and privacy experts, but the tech giant is being measured in its gradual rollout, which is still in preview mode.
Source: Dark Reading
December 6th, 2024 (4 months ago)
[Django] Django denial-of-service in django.utils.html.strip_tags()
Description: An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The strip_tags() method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities. References https://nvd.nist.gov/vuln/detail/CVE-2024-53907 https://docs.djangoproject.com/en/dev/releases/security https://groups.google.com/g/django-announce https://www.openwall.com/lists/oss-security/2024/12/04/3 https://www.djangoproject.com/weblog/2024/dec/04/security-releases https://github.com/advisories/GHSA-8498-2h75-472j
Source: Github Advisory Database (PIP)
December 6th, 2024 (4 months ago)
[Django] Django SQL injection in HasKey(lhs, rhs) on Oracle
Description: An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. Direct usage of the django.db.models.fields.json.HasKey lookup, when an Oracle database is used, is subject to SQL injection if untrusted data is used as an lhs value. (Applications that use the jsonfield.has_key lookup via __ are unaffected.) References https://nvd.nist.gov/vuln/detail/CVE-2024-53908 https://docs.djangoproject.com/en/dev/releases/security https://groups.google.com/g/django-announce https://www.openwall.com/lists/oss-security/2024/12/04/3 https://www.djangoproject.com/weblog/2024/dec/04/security-releases https://github.com/advisories/GHSA-m9g8-fxxm-xg86
Source: Github Advisory Database (PIP)
December 6th, 2024 (4 months ago)
[thorsten/phpmyfaq] phpMyFAQ Generates an Error Message Containing Sensitive Information if database server is not available
Description: Summary Exposure of database (ie postgreSQL) server's credential when connection to DB fails. Details Exposed database credentials upon misconfig/DoS @ permalink: https://github.com/thorsten/phpMyFAQ/blob/main/phpmyfaq/src/phpMyFAQ/Setup/Installer.php#L694 PoC When postgreSQL server is unreachable, an error would be thrown exposing the credentials of the database. For instance, when "http://:8080/setup/index.php" is hit when the database instance/server is down, then credentials are exposed, for instance: ( ! ) Warning: pg_connect(): Unable to connect to PostgreSQL server: connection to server at "127.0.0.1", port 5432 failed: Connection refused Is the server running on that host and accepting TCP/IP connections? in /var/www/html/src/phpMyFAQ/Database/Pgsql.php on line 78 Call Stack # Time Memory Function Location 1 0.0404 453880 {main}( ) .../index.php:0 2 1.1341 610016 phpMyFAQ\Setup\Installer->startInstall( $setup = ??? ) .../index.php:471 3 1.2113 611544 phpMyFAQ\Database\Pgsql->connect( $host = '127.0.0.1', $user = 'cvecve', $password = '', $database = 'cvecve', $port = 5432 ) .../Installer.php:694 4 1.2113 611864 pg_connect( $connection_string = 'host=127.0.0.1 port=5432 dbname=cvecve user=cvecve password=' ) .../Pgsql.php:78 ( ! ) Fatal error: Uncaught TypeError: Cannot assign false to property phpMyFAQ\Database\Pgsql::$conn of type ?PgSql\Connection in /var/www/html/src/phpMyFAQ/Database/Pgsql.php on line 78 ( ! ) TypeError: Cannot assign false to property p...
Source: Github Advisory Database (Composer)
December 6th, 2024 (4 months ago)
Microsoft expands Recall preview to Intel and AMD Copilot+ PCs
Description: ​Microsoft is now testing its AI-powered Recall feature on AMD and Intel-powered Copilot+ PCs enrolled in the Windows 11 Insider program. [...]
Source: BleepingComputer
December 6th, 2024 (4 months ago)
Ultralytics AI model hijacked to infect thousands with cryptominer
Description: The popular Ultralytics YOLO11 AI model was compromised in a supply chain attack to deploy cryptominers on devices running versions 8.3.41 and 8.3.42 from the Python Package Index (PyPI)   [...]
Source: BleepingComputer
December 6th, 2024 (4 months ago)
New Windows zero-day exposes NTLM credentials, gets unofficial patch
Description: A new zero-day vulnerability has been discovered that allows attackers to capture NTLM credentials by simply tricking the target into viewing a malicious file in Windows Explorer. [...]
Source: BleepingComputer
December 6th, 2024 (4 months ago)
Blue Yonder SaaS giant breached by Termite ransomware gang
Description: ​The Termite ransomware gang has officially claimed responsibility for the November breach of software as a service (SaaS) provider Blue Yonder. [...]
Source: BleepingComputer
December 6th, 2024 (4 months ago)
FSB Uses Trojan App to Monitor Russian Programmer Accused of Supporting Ukraine
Description: A Russian programmer accused of donating money to Ukraine had his Android device secretly implanted with spyware by the Federal Security Service (FSB) after he was detained earlier this year. The findings come as part of a collaborative investigation by First Department and the University of Toronto's Citizen Lab. "The spyware placed on his device allows the operator to track a target device's
Source: TheHackerNews
December 6th, 2024 (4 months ago)
Crypto-stealing malware posing as a meeting app targets Web3 pros
Description: Cybercriminals are targeting people working in Web3 with fake business meetings using a fraudulent video conferencing platform that infects Windows and Macs with crypto-stealing malware. [...]
Source: BleepingComputer
December 6th, 2024 (4 months ago)