NEWS & EVENTS

SERVICES

The service offers a survey to check the compliance of an organization with the GDPR (General Data Protection...

The service detects malicious signatures in analysed files, by scanning it with 57 different commercial anti-malware....

The service analyzes a DNS request log and detects if there are domain names which can be generated by a Domain...

This service offers the possibility of searching public domain information related to known security hardware and...

LATEST CVE

Published Description
CVE-2020-15046
24-06-2020 23:15:00
The web interface on Supermicro X10DRH-iT motherboards with BIOS 2.0a and IPMI firmware 03.40 allows remote attackers to exploit a cgi/config_user.cgi CSRF issue to add new admin users. The fixed versions are BIOS 3.2 and firmware 03.88.
CVE-2020-15005
24-06-2020 23:15:00
In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unauthorized user could view them.
CVE-2020-15041
24-06-2020 21:15:00
PHP-Fusion 9.03.60 allows XSS via the administration/site_links.php Add Site Link field.
CVE-2020-13247
24-06-2020 20:15:00
BooleBox Secure File Sharing Utility (potentially all versions) allows CSV injection via a crafted user name that is mishandled during export from the activity logs in the Audit Area.
CVE-2020-5962
24-06-2020 20:15:00
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component, in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges.

Pages

LATEST EXPLOIT

Pages