integratus systems - IS ReportsReports In Progress

integratus systems

Exchange Platform Services

Join Now-Sign Up
Log In

Category : IS Reports

Reports In Progress

Integratus Systems Reports In Progress

Blog
Editor Paper Extracts
Editor Picks Articles
Editor Picks Maps
Editor Picks Reports
IS Competitive Intelligence Briefings
IS Intelligence Work Group
IS Partners
IS Projects Work Group
IS Reports
IS Security Work Group
IS Working Group Briefings
Uncategorized

IS Security Alerts Advisories

7 key OT security best practices
... read more
91.09320
Newly Added (3)Android/Agent.ADP!tr.dldrAndroid/Banker.CEE!tr.spyAndroid/CanesSpy.D!tr.spyModified (17)Adware/Fyben!AndroidAdware/MobiDash!AndroidAdware/SMSreg!AndroidAdware/SpyLoan!AndroidAdware/Trackop!AndroidAndroid/Agent.ADZ!tr.dldrAndroid/Agent.CLQ!tr.spyAndroid/Agent.CVS!tr.spyAndroid/Agent.CXM!tr.spyAndroid/Agent.LFH!trAndroid/Agent.LRN!trAndroid/Agent.LWR!trAndroid/Bahamut.M!tr.spyAndroid/Banker.CEI!tr.spyAndroid/FakeApp.TB!trAndroid/PossibleThreatRiskware/Application!Android ... read more
91.09317
Newly Added (1)Android/FakeApp.ZQ!trModified (28)Adware/AndrMonitor!AndroidAdware/Autoins!AndroidAdware/Easylogger!AndroidAdware/Fyben!AndroidAdware/Kuguo!AndroidAdware/MobiDash!AndroidAdware/NativeAd!AndroidAdware/SpyLoan!AndroidAndroid/Agent.DYH!trAndroid/Agent.EUR!trAndroid/Agent.GKW!trAndroid/Agent.KVK!trAndroid/Agent.LFH!trAndroid/Agent.LGG!trAndroid/Agent.LPD!trAndroid/Agent.LXN!trAndroid/Banker.BWO!tr.spyAndroid/Banker.CEI!tr.spyAndroid/Banker.CFT!tr.spyAndroid/Cerberus.BF!tr.spyAndroid/Coe.C!tr.spyAndroid/FakeApp.TB!trAndroid/FakeWallet.HU!trAndroid/Hiddad.BAX!trAndroid/PossibleThreatAndroid/SmsSpy.ACX!tr.spyRiskware/Application!AndroidRiskware/Spamtool!Android ... read more
CVE-2023-6467 | Thecosy IceCMS 2.0.1 Comment Like improper enforcement of a single, unique action
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been rated as problematic. This issue affects some unknown processing of the file /Websquare/likeClickComment/ of the component Comment Like Handler. ... read more
CVE-2023-49371 | RuoYi fino 4.6 /system/dept/edit sql injection
Un punto di criticita di livello critico è stato rilevato in RuoYi fino 4.6. Da questa vulnerabilità è interessato una funzione sconosciuta del file /system/dept/edit. Attraverso la manipolazione di un ... read more
CVE-2023-6465 | PHPGurukul Nipah Virus Testing Management System 1.0 registered-user-testing.php regmobilenumber cross site scripting
Un punto di debole di livello problematico è stato rilevato in PHPGurukul Nipah Virus Testing Management System 1.0. É interessato una funzione sconosciuta del file registered-user-testing.php. La manipolazione del parametro ... read more
CVE-2023-48893 | Senayan SLiMS 9.6.1 staff_act.php sql injection
In Senayan SLiMS 9.6.1 è stato trovato un punto critico di livello critico. É interessato una funzione sconosciuta del file admin/modules/reporting/customs/staff_act.php. La manipolazione di un input sconosciuto se causa una ... read more
CVE-2023-6464 | SourceCodester User Registration and Login System 1.0 /endpoint/add-user.php user sql injection
Un punto di criticita di livello critico è stato rilevato in SourceCodester User Registration and Login System 1.0. Da questa vulnerabilità è interessato una funzione sconosciuta del file /endpoint/add-user.php. Attraverso ... read more
CVE-2023-48813 | Senayan SLiMS 9.6.1 fines_report.php sql injection
In Senayan SLiMS 9.6.1 è stata rilevato un punto critico di livello critico. Riguarda una funzione sconosciuta del file admin/modules/reporting/customs/fines_report.php. Attraverso l'influenza di un input sconosciuto per mezzo di una ... read more
CVE-2023-6463 | SourceCodester User Registration and Login System 1.0 /endpoint/add-user.php first_name cross site scripting
In SourceCodester User Registration and Login System 1.0 è stato trovato un punto critico di livello problematico. É interessato una funzione sconosciuta del file /endpoint/add-user.php. Per causa della manipolazione del ... read more
CVE-2023-6462 | SourceCodester User Registration and Login System 1.0 delete-user.php user cross site scripting
In SourceCodester User Registration and Login System 1.0 è stata rilevato un punto critico di livello problematico. Riguarda una funzione sconosciuta del file /endpoint/delete-user.php. Mediante la manipolazione del parametro user ... read more
CVE-2023-48774 | IdeaPush Plugin fino 8.53 su WordPress escalazione di privilegi
Un punto critico di livello critico è stato rilevato in IdeaPush Plugin fino 8.53. É interessato una funzione sconosciuta. Attraverso la manipolazione di un input sconosciuto per mezzo di una ... read more
CVE-2023-48779 | 360 Javascript Viewer Plugin fino 1.7.11 su WordPress escalazione di privilegi
È stata rilevata una vulnerabilità di livello critico in 360 Javascript Viewer Plugin fino 1.7.11. É interessato una funzione sconosciuta. Attraverso l'influenza di un input sconosciuto per mezzo di una ... read more
CVE-2023-49157 | Multiple Post Passwords Plugin fino 1.1.1 su WordPress cross site scripting
In Multiple Post Passwords Plugin fino 1.1.1 stata rilevata una vulnerabilità di livello problematico. Da questa vulnerabilità è interessato una funzione sconosciuta. La manipolazione di un input sconosciuto se causa ... read more
CVE-2023-48842 | D-Link Go-RT-AC750 revA_v101b03 hedwig.cgi service escalazione di privilegi
Un punto di debole di livello critico è stato rilevato in D-Link Go-RT-AC750 revA_v101b03. É interessato una funzione sconosciuta del file hedwig.cgi. Mediante la manipolazione del parametro service di un ... read more
CVE-2023-49156 | GoDaddy Email Marketing Plugin fino 1.4.3 su WordPress escalazione di privilegi
Una vulnerabilità di livello critico è stata rilevata in GoDaddy Email Marketing Plugin fino 1.4.3. Riguarda una funzione sconosciuta. Per causa della manipolazione di un input sconosciuto se causa una ... read more
CVE-2019-15514 | Telegram App 5.10 on Android/iOS Privacy information disclosure
A vulnerability classified as problematic was found in Telegram App 5.10 on Android/iOS. This vulnerability affects unknown code of the component Privacy. The manipulation leads to information disclosure. This vulnerability ... read more
CVE-2019-15517 | jc21 Nginx Proxy Manager up to 2.0.12 path traversal
A vulnerability, which was classified as critical, was found in jc21 Nginx Proxy Manager up to 2.0.12. Affected is an unknown function. The manipulation with the input %2e%2e%2f leads to ... read more
CVE-2019-15518 | Swoole up to 4.2.12 swPort_http_static_handler path traversal
A vulnerability has been found in Swoole up to 4.2.12 and classified as critical. Affected by this vulnerability is the function swPort_http_static_handler. The manipulation leads to path traversal. This vulnerability ... read more
CVE-2019-15516 | Cuberite WebAdmin path traversal
A vulnerability, which was classified as critical, has been found in Cuberite. This issue affects some unknown processing of the component WebAdmin. The manipulation with the input ….// leads to ... read more
NA – CVE-2023-45252 – DLL Hijacking vulnerability in Huddly…
DLL Hijacking vulnerability in Huddly HuddlyCameraService before version 8.0.7, not including version 7.99, due to the installation of the service in a directory that grants write privileges to ... read more
NA – CVE-2023-4912 – An issue has been discovered in GitLab EE…
An issue has been discovered in GitLab EE affecting all versions starting from 10.5 before 16.4.3, all versions starting from 16.5 before 16.5.3, all versions starting from 16.6 before 16.6.1. ... read more
CVE-2023-4518 | Hitachi Energy Relion670 GOOSE Message Denial of Service
Es wurde eine problematische Schwachstelle in Hitachi Energy Relion670 gefunden. Dabei betrifft es einen unbekannter Codeteil der Komponente GOOSE Message Handler. Mittels dem Manipulieren mit unbekannten Daten kann eine Denial ... read more
Flera kritiska sårbarheter i Nessus Network Monitor-komponenter
Tenable har släppt en ny verions av Nessus Network Monitor. I version 6.3.1 är kritiska säkerhetsbrister i tredjepartskomponenterna HandlebarsJS, OpenSSL och jquery-file-upload lagade [1]. Påverkade produkter Nessus Network Monitor 6.3.0 ... read more
CVE-2019-15481 | Kimai v2 up to 1.0 Timesheet Description cross site scripting
A vulnerability was found in Kimai v2 up to 1.0. It has been classified as problematic. This affects an unknown part of the component Timesheet Description Handler. The manipulation leads ... read more
CVE-2019-15487 | DfE School Experience prior v16333-GA Teacher Training cross site scripting
A vulnerability, which was classified as problematic, was found in DfE School Experience. This affects an unknown part of the component Teacher Training. The manipulation leads to cross site scripting. ... read more
CVE-2019-15488 | Ignite Realtime Openfire up to 4.4.0 LDAP Setup Test Reflected cross site scripting
A vulnerability has been found in Ignite Realtime Openfire up to 4.4.0 and classified as problematic. This vulnerability affects unknown code of the component LDAP Setup Test. The manipulation leads ... read more
CVE-2019-15486 | django-js-reverse up to 0.9.0 js_reverse_inline cross site scripting
A vulnerability, which was classified as problematic, has been found in django-js-reverse up to 0.9.0. Affected by this issue is the function js_reverse_inline. The manipulation leads to cross site scripting. ... read more
CVE-2019-15485 | Bolt up to 3.6.9 FilesystemManager.php createFolder/createFile cross site scripting
A vulnerability classified as problematic was found in Bolt up to 3.6.9. Affected by this vulnerability is the function createFolder/createFile of the file Controller/Async/FilesystemManager.php. The manipulation leads to cross site ... read more
CVE-2019-15484 | Bolt up to 3.6.9 Image cross site scripting
A vulnerability classified as problematic has been found in Bolt up to 3.6.9. Affected is an unknown function of the component Image Handler. The manipulation leads to cross site scripting. ... read more
CVE-2019-15482 | selectize-plugin-a11y up to 1.0.x msg cross site scripting
A vulnerability was found in selectize-plugin-a11y up to 1.0.x. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument msg leads to cross site ... read more
CVE-2019-15483 | Bolt up to 3.6.9 System Log title cross site scripting
A vulnerability was found in Bolt up to 3.6.9. It has been rated as problematic. This issue affects some unknown processing of the component System Log Handler. The manipulation of ... read more
CVE-2019-15480 | Domoticz 4.10717 item.Name cross site scripting (ID 3367)
A vulnerability was found in Domoticz 4.10717 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument item.Name leads to cross site scripting. ... read more
CVE-2019-11588 | JIRA up to 7.13.5/8.2.2/8.3.1 doGarbageCollection cross-site request forgery
A vulnerability classified as problematic was found in JIRA up to 7.13.5/8.2.2/8.3.1. Affected by this vulnerability is the function doGarbageCollection. The manipulation leads to cross-site request forgery. This vulnerability is ... read more
CVE-2019-15477 | Jooby up to 1.6.3 Error cross site scripting
A vulnerability has been found in Jooby up to 1.6.3 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Error Handler. The manipulation leads ... read more
CVE-2019-11654 | Micro Focus Verastream Host Integrator up to 7.7 SP2 path traversal
A vulnerability, which was classified as critical, was found in Micro Focus Verastream Host Integrator up to 7.7 SP2. This affects an unknown part. The manipulation leads to path traversal. ... read more
CVE-2019-11587 | JIRA up to 7.13.5/8.2.2/8.3.1 ViewLogging cross-site request forgery
A vulnerability classified as problematic has been found in JIRA up to 7.13.5/8.2.2/8.3.1. Affected is the function ViewLogging. The manipulation leads to cross-site request forgery. This vulnerability is traded as ... read more
CVE-2019-15476 | Former up to 4.2.0 Checkbox cross site scripting
A vulnerability, which was classified as problematic, was found in Former up to 4.2.0. Affected is an unknown function of the component Checkbox Handler. The manipulation leads to cross site ... read more
CVE-2019-15092 | Webtoffee WordPress Users 1.3.0 on WordPress WF_CustomerImpExpCsv_Exporter CSV File injection (ID 154203)
A vulnerability, which was classified as critical, has been found in Webtoffee WordPress Users and WooCommerce Customers Import Export Plugin 1.3.0 on WordPress. This issue affects the function WF_CustomerImpExpCsv_Exporter. The ... read more
CVE-2019-14999 | Atlassian Universal Plugin Manager up to 2.22.18/3.0.2/4.0.2 REST Endpoint cross-site request forgery
A vulnerability classified as problematic was found in Atlassian Universal Plugin Manager up to 2.22.18/3.0.2/4.0.2. This vulnerability affects unknown code of the component REST Endpoint. The manipulation leads to cross-site ... read more
CVE-2019-13014 | Little Snitch 4.3.x Helper Tool access control
A vulnerability was found in Little Snitch 4.3.x. It has been classified as critical. Affected is an unknown function of the component Helper Tool. The manipulation leads to improper access ... read more
CVE-2019-12400 | Apache Santuario XML Security for Java up to 2.0.2/2.1.3 Cache XML Document input validation (RHSA-2020:0804)
A vulnerability has been found in Apache Santuario XML Security for Java up to 2.0.2/2.1.3 and classified as critical. This vulnerability affects unknown code of the component Cache. The manipulation ... read more
CVE-2019-13013 | Little Snitch 4.3.0/4.3.1/4.3.2 Helper Tool access control
A vulnerability was found in Little Snitch 4.3.0/4.3.1/4.3.2 and classified as critical. This issue affects some unknown processing of the component Helper Tool. The manipulation leads to improper access controls. ... read more
CVE-2019-11589 | JIRA up to 7.13.5/8.2.2/8.3.1 ChangeSharedFilterOwner redirect
A vulnerability, which was classified as problematic, has been found in JIRA up to 7.13.5/8.2.2/8.3.1. Affected by this issue is some unknown functionality of the component ChangeSharedFilterOwner. The manipulation leads ... read more
CVE-2023-5427 | Arm Bifrost GPU Kernel Driver fino r45p0 buffer overflow
In Arm Bifrost GPU Kernel Driver, Valhall GPU Kernel Driver and 5th Gen GPU Architecture Kernel Driver fino r45p0 stata rilevata una vulnerabilità di livello problematico. Da questa vulnerabilità è ... read more
91.09311
Modified (13)Adware/Hiddad!AndroidAdware/RecmAds!AndroidAdware/SpyLoan!AndroidAndroid/Agent.ACI!tr.dldrAndroid/Agent.CLO!tr.spyAndroid/Agent.CLQ!tr.spyAndroid/Agent.HGM!trAndroid/Agent.KVK!trAndroid/Agent.LRN!trAndroid/Bahamut.M!tr.spyAndroid/Banker.CEI!tr.spyAndroid/FakeApp.TB!trRiskware/Application!Android ... read more
CVE-2017-18577 | mailchimp-for-wp Plugin up to 4.1.7 on WordPress add_query_arg cross site scripting
A vulnerability was found in mailchimp-for-wp Plugin up to 4.1.7 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation of the argument add_query_arg ... read more
CVE-2017-18583 | post-pay-counter Plugin up to 2.730 on WordPress injection
A vulnerability was found in post-pay-counter Plugin up to 2.730 on WordPress and classified as critical. This issue affects some unknown processing. The manipulation leads to injection. The identification of ... read more
CVE-2017-18584 | post-pay-counter Plugin up to 2.730 on WordPress Update Setting access control
A vulnerability was found in post-pay-counter Plugin up to 2.730 on WordPress. It has been classified as critical. Affected is an unknown function of the component Update Setting Handler. The ... read more
CVE-2017-18582 | time-sheets Plugin up to 1.5.1 on WordPress cross site scripting
A vulnerability has been found in time-sheets Plugin up to 1.5.1 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. This ... read more

integratus systems © 2023

KAVI IS iCOMMEX Platform v 02.25 Friday, December 1, 2023

Login

Login to integratus systems Exchange Platform Services

Forgot password?

Register Now

Hello

Your Account Type is
Your Mail Id is
Your Username is

Security Briefing Search

PDF Library Search

IS Reports Search

Reset Password

Reset Password

You have no permission to access this content