Explore >> Select a destination

You are here

 textslashplain.com
Attack Techniques: Full-Trust Script Downloads - text/plain
| | swordbytes.com
Overwolf 1-Click Remote Code Execution - CVE-2021-33501
9.9 parsecs away

Travel
| | SwordBytes researchers have identified an Unauthenticated Remote Code Execution (RCE) vulnerability in Overwolf's Client Application by abusing a Reflected Cross-Site Scripting (XSS) issue present in the "overwolfstore://" URL handler. This vulnerability allows remote unauthenticated attackers to execute arbitrary commands on the underlying operating system that hosts Overwolf's Client Application.
| | palant.info
McAfee WebAdvisor: From XSS in a sandboxed browser extension to administrator privileges | Almost Secure
10.4 parsecs away

Travel
| | A vulnerability in McAfee WebAdvisor allowed any website to gain administrator privileges. User interaction required: two clicks anywhere on the page.
| | blog.phylum.io
North Korea Still Attacking Developers via npm | Phylum
10.1 parsecs away

Travel
| | There's a renewed surge of attacks with obfuscated JavaScript and fake job campaigns to compromise developers and infiltrate companies. See Phylum research.
| | www.itechpost.com
F5 BIG-IP in Big Trouble With CVE-2022-1388 Vulnerability - Patch ASAP!
69.3 parsecs away

Travel
| A critical vulnerability CVE-2022-1388 creates great concern for F5 BIG-IP products. Will patching make life better for the admins?