News

• Google Patches Critical Chrome Vulnerability
• Hackers Are Using Developing Countries For Ransomware Practice
• North Korean Hackers Hijack Antivirus Updates For Malware Delivery
• CISA Warns Of Windows Print Spooler Flaw After Microsoft Sees Russian Exploitation
• US Charges Iranians With Cyber Snooping On Government, Companies
• TensorFlow AI Models At Risk Due To Keras API Flaw
• Authorities Investigate LabHost Users After Phishing Service Shutdown
• Windows Vulnerability Reported By The NSA Exploited To Install Russian Malware
• UnitedHealth Admits Breach Could Cover Substantial Proportion Of People In America
• Microsoft DRM Hack Could Allow Movie Downloads From Streaming
• Over A Million Neighbourhood Watch Members Exposed
• MITRE Hacked By State Sponsored Group Via Ivanti Zero Days
• Russia's Sandworm APT Linked To Attack On Texas Water Plant
• EU Tells Meta It Can't Paywall Privacy
• Kremlin-Backed Actors Spread Disinformation Ahead Of US Elections
• Lawmakers Are Kicking Warrantless Wiretapping Into Overdrive
• Five Eyes Agencies Release New AI Security Guidance
• Phishing Platform LabHost Shut Down By Law Enforcement
• Scammers Offer Cash To Phone Carrier Staff To Swap SIM Cards
• Ivanti Patches 27 Vulns In Avalanche MDM Product
• Attackers Are Pummeling Networks Around The World With Millions Of Login Attempts
• Recent OT And Espionage Attacks Linked To Russia's Sandworm, Now Named APT44
• OpenAI's ChatGPT Can Exploit Real Vulnerabilities By Reading Advisories
• Google Location Tracking Deal Could Be Derailed By Politics
• Cryptojacker Arrested For Defrauding Cloud Providers Of $3.5 Million

Exploits

• Apache Solr Backup/Restore API Remote Code Execution
• Relate Learning And Teaching System SSTI / Remote Code Execution
• Nginx 1.25.5 Host Header Validation
• FortiNet FortiClient EMS 7.2.2 / 7.0.10 SQL Injection / Remote Code Execution
• GitLens Git Local Configuration Execution
• Visual Studio Code Execution
• Gambio Online Webshop 4.9.2.0 Remote Code Execution
• Palo Alto Networks PAN-OS Unauthenticated Remote Code Execution
• Palo Alto PAN-OS Command Execution / Arbitrary File Creation
• LRMS PHP 1.0 SQL Injection / Shell Upload
• Dreamehome 2.1.5 Broken Authorization
• SofaWiki 3.9.2 Shell Upload
• Laravel Framework 11 Credential Disclosure
• FlatPress 1.3 Shell Upload
• MindManager Local Privilege Escalation
• WordPress Background Image Cropper 1.2 Shell Upload
• Flowise 1.6.5 Authentication Bypass
• Relate Learning And Teaching System SSTI / Remote Code Execution
• Elber Wayber Analog/Digital Audio STL 4.00 Insecure Direct Object Reference
• Elber Wayber Analog/Digital Audio STL 4.00 Authentication Bypass
• Elber ESE DVB-S/S2 Satellite Receiver 1.5.x Insecure Direct Object Reference
• Elber ESE DVB-S/S2 Satellite Receiver 1.5.x Authentication Bypass
• Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link Insecure Direct Object Reference
• Elber Reble610 M/ODU XPIC IP-ASI-SDH Microwave Link Authentication Bypass
• Elber Cleber/3 Broadcast Multi-Purpose Platform 1.0.0 Insecure Direct Object Reference

• [webapps] Flowise 1.6.5 - Authentication Bypass
• [webapps] Laravel Framework 11 - Credential Leakage
• [webapps] SofaWiki 3.9.2 - Remote Command Execution (RCE) (Authenticated)
• [webapps] Wordpress Plugin Background Image Cropper v1.2 - Remote Code Execution
• [webapps] FlatPress v1.3 - Remote Command Execution
• [remote] Palo Alto PAN-OS < v11.1.2-h3 - Command Injection and Arbitrary File Creation
• [webapps] OpenClinic GA 5.247.01 - Path Traversal (Authenticated)
• [webapps] OpenClinic GA 5.247.01 - Information Disclosure
• [webapps] Jenkins 2.441 - Local File Inclusion
• [webapps] djangorestframework-simplejwt 5.3.1 - Information Disclosure
• [webapps] BMC Compuware iStrobe Web - 20.13 - Pre-auth RCE
• [webapps] Stock Management System v1.0 - Unauthenticated SQL Injection
• [webapps] Online Fire Reporting System OFRS - SQL Injection Authentication Bypass
• [webapps] Savsoft Quiz v6.0 Enterprise - Stored XSS
• [webapps] Wordpress Plugin WP Video Playlist 1.1.1 - Stored Cross-Site Scripting (XSS)
• [webapps] WBCE CMS Version 1.6.1 - Remote Command Execution (Authenticated)
• [webapps] WBCE 1.6.0 - Unauthenticated SQL injection
• [webapps] Moodle 3.10.1 - Authenticated Blind Time-Based SQL Injection - "sort" parameter
• [local] PrusaSlicer 2.6.1 - Arbitrary code execution
• [webapps] PopojiCMS Version 2.0.1 - Remote Command Execution
• [webapps] Wordpress Plugin Playlist for Youtube 1.32 - Stored Cross-Site Scripting (XSS)
• [webapps] HTMLy Version v2.9.6 - Stored XSS
• [webapps] Ray OS v2.6.3 - Command Injection RCE(Unauthorized)
• [local] Terratec dmx_6fire USB - Unquoted Service Path
• [remote] MinIO < 2024-01-31T20-20-33Z - Privilege Escalation
• [webapps] GUnet OpenEclass E-learning platform 3.15 - 'certbadge.php' Unrestricted File Upload
• [webapps] Open Source Medicine Ordering System v1.0 - SQLi
• [webapps] Daily Expense Manager 1.0 - 'term' SQLi
• [webapps] Best Student Result Management System v1.0 - Multiple SQLi
• [webapps] Human Resource Management System v1.0 - Multiple SQLi
• [remote] Positron Broadcast Signal Processor TRA7005 v1.20 - Authentication Bypass
• [webapps] Wordpress Theme Travelscape v1.0.3 - Arbitrary File Upload
• [local] AnyDesk 7.0.15 - Unquoted Service Path
• [webapps] Wordpress Plugin Alemha Watermarker 1.3.1 - Stored Cross-Site Scripting (XSS)
• [webapps] Computer Laboratory Management System v1.0 - Multiple-SQLi
• [local] ESET NOD32 Antivirus 17.0.16.0 - Unquoted Service Path
• [webapps] Axigen < 10.5.7 - Persistent Cross-Site Scripting
• [webapps] Gibbon LMS v26.0.00 - SSTI vulnerability
• [webapps] Casdoor < v1.331.0 - '/api/set-password' CSRF
• [local] Microsoft Windows Defender - Detection Mitigation Bypass TrojanWin32Powessere.G
• [webapps] Wordpress Plugin - Membership For WooCommerce < v2.1.7 - Arbitrary File Upload to Shell (Unauthenticated)
• [webapps] Smart School 6.4.1 - SQL Injection
• [webapps] CE Phoenix v1.0.8.20 - Remote Code Execution
• [webapps] Elementor Website Builder < 3.12.2 - Admin+ SQLi
• [webapps] Blood Bank v1.0 - Stored Cross Site Scripting (XSS)
• [webapps] Daily Habit Tracker 1.0 - Broken Access Control

Last 20 Website Defacements - Zone-h

Advisories

• Ubuntu Security Notice USN-6748-1 Wed, 24 Apr 2024 15:20:38 GMT
  Ubuntu Security Notice 6748-1 - It was discovered that Sanitize incorrectly handled noscript elements under certain circumstances. An attacker could possibly use this issue to execute a cross-site scripting attack. This issue only affected Ubuntu 22.04 LTS. It was discovered that Sanitize incorrectly handled style elements under certain circumstances. An attacker could possibly use this issue to execute a cross-site scripting attack.
• Ubuntu Security Notice USN-6747-1 Wed, 24 Apr 2024 15:20:22 GMT
  Ubuntu Security Notice 6747-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. Bartek Nowotarski discovered that Firefox did not properly limit HTTP/2 CONTINUATION frames. An attacker could potentially exploit this issue to cause a denial of service.
• Ubuntu Security Notice USN-6742-2 Wed, 24 Apr 2024 15:19:30 GMT
  Ubuntu Security Notice 6742-2 - Daniele Antonioli discovered that the Secure Simple Pairing and Secure Connections pairing in the Bluetooth protocol could allow an unauthenticated user to complete authentication without pairing credentials. A physically proximate attacker placed between two Bluetooth devices could use this to subsequently impersonate one of the paired devices. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.
• Red Hat Security Advisory 2024-2033-03 Wed, 24 Apr 2024 15:03:04 GMT
  Red Hat Security Advisory 2024-2033-03 - An update for libreswan is now available for Red Hat Enterprise Linux 9.
• Red Hat Security Advisory 2024-2011-03 Wed, 24 Apr 2024 15:02:54 GMT
  Red Hat Security Advisory 2024-2011-03 - Updated Satellite Client packages that fixes Important security bugs and regular bugs are now available for Red Hat Satellite. Issues addressed include a buffer overflow vulnerability.
• Red Hat Security Advisory 2024-2010-03 Wed, 24 Apr 2024 15:02:40 GMT
  Red Hat Security Advisory 2024-2010-03 - An update is now available for Red Hat Satellite 6.15. The release contains a new version of Satellite and important security fixes for various components. Issues addressed include HTTP request smuggling, crlf injection, denial of service, file disclosure, and traversal vulnerabilities.
• Red Hat Security Advisory 2024-2008-03 Wed, 24 Apr 2024 15:02:30 GMT
  Red Hat Security Advisory 2024-2008-03 - An update for kernel-rt is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include null pointer and use-after-free vulnerabilities.
• Red Hat Security Advisory 2024-2007-03 Wed, 24 Apr 2024 15:02:21 GMT
  Red Hat Security Advisory 2024-2007-03 - An update for pcs is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
• Red Hat Security Advisory 2024-2006-03 Wed, 24 Apr 2024 15:02:11 GMT
  Red Hat Security Advisory 2024-2006-03 - An update for kernel is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include null pointer and use-after-free vulnerabilities.
• Red Hat Security Advisory 2024-2005-03 Wed, 24 Apr 2024 15:02:03 GMT
  Red Hat Security Advisory 2024-2005-03 - An update for linux-firmware is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Issues addressed include an information leakage vulnerability.
• Red Hat Security Advisory 2024-2004-03 Wed, 24 Apr 2024 15:01:55 GMT
  Red Hat Security Advisory 2024-2004-03 - An update for kernel is now available for Red Hat Enterprise Linux 7. Issues addressed include null pointer and use-after-free vulnerabilities.
• Red Hat Security Advisory 2024-2003-03 Wed, 24 Apr 2024 15:01:44 GMT
  Red Hat Security Advisory 2024-2003-03 - An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Issues addressed include null pointer and use-after-free vulnerabilities.
• Red Hat Security Advisory 2024-2002-03 Wed, 24 Apr 2024 15:01:34 GMT
  Red Hat Security Advisory 2024-2002-03 - An update for grub2 is now available for Red Hat Enterprise Linux 7. Issues addressed include buffer overflow and bypass vulnerabilities.
• Red Hat Security Advisory 2024-1999-03 Wed, 24 Apr 2024 15:01:25 GMT
  Red Hat Security Advisory 2024-1999-03 - An update for postgresql-jdbc is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.
• Red Hat Security Advisory 2024-1998-03 Wed, 24 Apr 2024 15:01:15 GMT
  Red Hat Security Advisory 2024-1998-03 - An update for libreswan is available for Red Hat Enterprise Linux 8.
• Red Hat Security Advisory 2024-1997-03 Wed, 24 Apr 2024 15:01:04 GMT
  Red Hat Security Advisory 2024-1997-03 - An update for gnutls is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include an information leakage vulnerability.
• Red Hat Security Advisory 2024-1994-03 Wed, 24 Apr 2024 15:00:55 GMT
  Red Hat Security Advisory 2024-1994-03 - An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
• Red Hat Security Advisory 2024-1992-03 Wed, 24 Apr 2024 15:00:44 GMT
  Red Hat Security Advisory 2024-1992-03 - An update for opencryptoki is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
• Red Hat Security Advisory 2024-1989-03 Wed, 24 Apr 2024 15:00:35 GMT
  Red Hat Security Advisory 2024-1989-03 - An update for less is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
• Red Hat Security Advisory 2024-1982-03 Wed, 24 Apr 2024 15:00:24 GMT
  Red Hat Security Advisory 2024-1982-03 - An update for thunderbird is now available for Red Hat Enterprise Linux 8.4 Advanced Mission critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Issues addressed include a denial of service vulnerability.
• Debian Security Advisory 5673-1 Tue, 23 Apr 2024 16:10:55 GMT
  Debian Linux Security Advisory 5673-1 - Charles Fol discovered that the iconv() function in the GNU C library is prone to a buffer overflow vulnerability when converting strings to the ISO-2022-CN-EXT character set, which may lead to denial of service (application crash) or the execution of arbitrary code.
• Ubuntu Security Notice USN-6746-1 Tue, 23 Apr 2024 16:02:22 GMT
  Ubuntu Security Notice 6746-1 - It was discovered that Google Guest Agent and Google OS Config Agent incorrectly handled certain JSON files. An attacker could possibly use this issue to cause a denial of service.
• Debian Security Advisory 5672-1 Tue, 23 Apr 2024 15:59:51 GMT
  Debian Linux Security Advisory 5672-1 - Several vulnerabilities have been discovered in the OpenJDK Java runtime, which may result in denial of service or information disclosure.
• Ubuntu Security Notice USN-6728-3 Tue, 23 Apr 2024 15:54:52 GMT
  Ubuntu Security Notice 6728-3 - USN-6728-1 fixed vulnerabilities in Squid. The fix for CVE-2023-5824 caused Squid to crash in certain environments on Ubuntu 20.04 LTS and was disabled in USN-6728-2. The problematic fix for CVE-2023-5824 has now been corrected and reinstated in this update.
• Ubuntu Security Notice USN-6743-2 Tue, 23 Apr 2024 15:53:59 GMT
  Ubuntu Security Notice 6743-2 - Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.