Bug Archives - AZGAD WEBSITE SECURITY BLOG

Saturday, April 27, 2024

Latest:

2021-01-06 Tom Spring

RCE ‘Bug’ Found and Disputed in Popular PHP Scripting Framework

Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases.

2020 total bug reports Bug Bugs comparitech cyberpion cybersecurity skills fujiwara events IT security teams IT teams Most Recent ThreatLists Patch management patch Tuesday personnel retailers risk based security software patching Software vulnerabilities third-party online software top 50 vendors Vulnerabilities vulnerability Fujiwara events workforce shortage

2020-12-10 Becky Bracken

Record Levels of Software Bugs Plague Short-Staffed IT Teams in 2020

As just one symptom, 83 percent of the Top 30 U.S. retailers have vulnerabilities which pose an “imminent” cyber-threat, including Amazon, Costco, Kroger and Walmart.

Bug Code Injection Denial of Service e-commerce information disclosure patch PHP Object Injection plugin security vulnerability Vulnerabilities Web Security welcart WordFence WordPress

2020-11-07 Tara Seals

WordPress Sites Open to Code Injection Attacks via Welcart e-Commerce Bug

The shopping cart application contains a PHP object-injection bug.

Bug critical flaw CVE-2020-3992 ESXi OpenSLP remote code execution use-after-free version ESXi70U1a-17119627 vmware Vulnerabilities Web Security

2020-11-04 Lindsey O'Donnell

VMware Issues Updated Fix For Critical ESXi Flaw

A previous fix for the critical remote code execution bug was “incomplete,” according to VMware.

Bug critical flaw CVE-2020-3992 ESXi OpenSLP remote code execution use-after-free version ESXi70U1a-17119627 vmware Vulnerabilities Web Security

2020-11-04 Lindsey O'Donnell

VMware Issues Updated Fix For Critical ESXi Flaw

A previous fix for the critical remote code execution bug was “incomplete,” according to VMware.

7-day disclosure Buffer Overflow Bug crash CVE-2020-17087 Exploit Google Project Zero in the wild ioctl Kernel Local Privilege Escalation Proof of Concept Sandbox escape security vulnerability Vulnerabilities Windows Windows 10 zero day

2020-11-02 Tara Seals

Unpatched Windows Zero-Day Exploited in the Wild for Sandbox Escape

Google Project Zero disclosed the bug before a patch becomes available from Microsoft.

Bug cloud accounts Cloud Security container image-pulling containerd credential leak CVE-2020-15157 google compute platform host registry security vulnerability Vulnerabilities

2020-10-26 Tara Seals

Containerd Bug Exposes Cloud Account Credentials

The flaw (CVE-2020-15157) is located in the container image-pulling process.

Bug code execution CVE-2020-5977 CVE-2020-5990 Denial of Service DoS enthusiast gaming gamer geforce experience GeForce GTX graphics card GPU graphics driver Hacks high severity flaw Nvidia Nvidia GeForce 3.20.5.70 security vulnerability Vulnerabilities Web Security Windows

2020-10-23 Lindsey O'Donnell

Nvidia Warns Gamers of Severe GeForce Experience Flaws

Versions of Nvidia GeForce Experience for Windows prior to 3.20.5.70 are affected by a high-severity bug that could enable code execution, denial of service and more.