IBM MQ is vulnerable to a denial of service attack
Overview : A vulnerability was found in the clustering code that caused a memory leak. This could be exploited by an attacker to execute a…
Latest Security vulnerabilities in Cisco products
Overview : Cisco IOS XE Software NAT Session Initiation Protocol Application Layer Gateway Denial of Service Vulnerability CWE-399/ CVE-2019-12646 A vulnerability in the Network Address…
Jenkins announces vulnerabilities
Overview : Stored XSS vulnerability in expandable textbox form control SECURITY-1498 / CVE-2019-10401 Jenkins form controls include an expandable textbox that can transform from a…
User Credentials hacked in IBM Security Key Lifecycle Manager
Overview : IBM Security Key Lifecycle Manager 3.0 and 3.0.1 stores user credentials in plain in clear text which can be read by a local…
XSS attacks in Joomla! 3.x before 3.9.12
Overview : In Joomla! 3.x before 3.9.12, inadequate escaping allowed XSS attacks using the logo parameter of the default templates. Affected Product(s) : Joomla! 3.x…
Exploitation in vBulletin allows remote command execution
Overview : vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request. Affected Product(s) : vBulletin 5.x through…