[webapps] KodExplorer 4.49 – CSRF to Arbitrary File Upload
KodExplorer 4.49 – CSRF to Arbitrary File Upload
KodExplorer 4.49 – CSRF to Arbitrary File Upload
PaperCut NG/MG 22.0.4 – Authentication Bypass
Multi-Vendor Online Groceries Management System 1.0 – Remote Code Execution
Arcsoft PhotoStudio 6.0.0.172 – Unquoted Service Path
Wondershare Filmora 12.2.9.2233 – Unquoted Service Path
OCS Inventory NG 2.3.0.0 – Unquoted Service Path
The Russian-speaking threat actor behind a backdoor known as Tomiris is primarily focused on gathering intelligence in Central Asia, fresh findings from Kaspersky reveal.
“Tomiris’s endgame consistently appears to be the regular theft of internal docum…
Threat actors are employing a previously undocumented “defense evasion tool” dubbed AuKill that’s designed to disable endpoint detection and response (EDR) software by means of a Bring Your Own Vulnerable Driver (BYOVD) attack.
“The AuKill tool abuses …
KubeStalk is a tool to discover Kubernetes and related infrastructure based attack surface from a black-box perspective. This tool is a community version of the tool used to probe for unsecured Kubernetes clusters around the internet during Pro…