[webapps] Cisco Firepower Management Center < 6.6.7.1 – Authenticated RCE
Cisco Firepower Management Center
[remote] VMware Cloud Director 10.5 – Bypass identity verification
VMware Cloud Director 10.5 – Bypass identity verification
[webapps] SnipeIT 6.2.1 – Stored Cross Site Scripting
SnipeIT 6.2.1 – Stored Cross Site Scripting
Is it possible to spoof touchscreen inputs without user interaction? [migrated]
Consider the following system:
Stock Android 9, unrooted
USB and wireless debugging unavailable
screen permanently turned off
So basically a headless Android device.
Question: Is it possible to programmatically spoof touchscreen interact…
If someone has your VPN password and email address, can they decrypt your VPN traffic?
VPN encrypts your traffic all around. So let’s say someone knows your VPN email/password. Would this give them the ability to decrypt all your communications?
Data brokers admit they’re selling information on precise location, kids, and reproductive healthcare
Information newly made available under California law has shed light on data broker practices, including exactly what categories of information they trade in.
CVE-2024-1237 | Elementor Header & Footer Builder Plugin up to 1.6.24 on WordPress cross site scripting
A vulnerability classified as problematic was found in Elementor Header & Footer Builder Plugin up to 1.6.24 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.
This vulnerability i…
CVE-2024-27235 | Google Android plugin_extern_func information disclosure
A vulnerability classified as problematic has been found in Google Android. Affected is the function plugin_extern_func. The manipulation leads to information disclosure.
This vulnerability is traded as CVE-2024-27235. The attack needs to be approache…
CVE-2024-27236 | Google Android aoc.c aoc_unlocked_ioctl type confusion
A vulnerability was found in Google Android. It has been rated as problematic. This issue affects the function aoc_unlocked_ioctl of the file aoc.c. The manipulation leads to type confusion.
The identification of this vulnerability is CVE-2024-27236. …