CVE-2022-1212
Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited.
CVE-2022-1213
SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191
Cryptocurrency clients’ mailing-list info stolen from Mailchimp
Mailchimp has confirmed a miscreant gained access to one of its internal tools and used it to steal data belonging to 100-plus high-value customers. The clients were all in cryptocurrency…
CVE-2022-1213
SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191
WordPress Overtakes Magento in Credit Card Skimmers
Three main malware signatures account for roughly 40% of all detected credit card skimmers since January 2021. All three of them are most commonly found on WordPress websites.
CVE-2022-1235
Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVE-2022-1235
Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVE-2022-1236
Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0.
CVE-2022-1236
Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0.
New Russian Android Malware Tracks GPS Location and Spies on Victims
By Waqas The culprit behind this malware is Turla, a Russia State-Sponsored group known for previous high-profile malware attacks against… This is a post from HackRead.com Read the original post:…