Tag: XSS

Vulnerabilities Expose Cisco Meraki and ECE Products to DoS Attacks
Summary: Cisco has issued fixes for two high-severity denial-of-service vulnerabilities affecting its Meraki devices and Enterprise Chat and Email (ECE) appliances. The Meraki vulnerability could cause the AnyConnect VPN server to restart, while the ECE flaw could disrupt chat functionalities due to improper input validation. Users are urged to update to patched versions to mitigate potential risks.…
Read More
Understanding Russian Cognitive Warfare
This article explores Russia’s cognitive warfare tactics, rooted in Soviet KGB doctrines, and their modern adaptations involving disinformation and cyber operations. It presents strategies to counter these tactics, including targeted cyber retaliation and strategic communication, utilizing frameworks such as SWOT and DIMEFIL. A comprehensive analysis is provided on the strategic environment and implications of Russian hacktivist groups, along with methods for dismantling them from within.…
Read More
Mitel Addresses High Severity XSS Vulnerability in MiContact Center Business
Summary: Mitel has announced a security advisory concerning a reflected cross-site scripting (XSS) vulnerability, identified as CVE-2025-23092, in its MiContact Center Business software. The vulnerability allows unauthenticated attackers to execute arbitrary scripts, potentially leading to the compromise of sensitive information and modification of chat sessions. Mitel recommends that customers update to newer software versions or apply specific hotfixes to mitigate the risk.…
Read More
⚡ Weekly Recap: Chrome 0-Day, IngressNightmare, Solar Bugs, DNS Tactics, and More
Summary: This week’s cybersecurity insights highlight vulnerabilities in widely used systems like Chrome and Kubernetes, as well as emerging threats from phishing-as-a-service operations. The coverage includes data leaks, ransomware trends, and the importance of vigilance against common oversights that can lead to security breaches. Additionally, the impact of recent legal cases and developments in AI-driven cyber threats are discussed.…
Read More
Red Team Perspective: Known Attack Surface and Potential Risks of GitLab – Security KER – Security Information Platform
This article discusses various known attack surfaces and potential risks associated with GitLab, highlighting a range of vulnerabilities, including Remote Code Execution (RCE), SSRF, XSS, and permission escalation issues. The information covers the history of vulnerabilities, their impact, and famous cases, emphasizing the importance of security measures for self-managed GitLab instances.…
Read More
Dozens of solar inverter flaws could be exploited to attack power grids – PRSOL:CC
This article discusses severe vulnerabilities found in solar inverters from major manufacturers Sungrow, Growatt, and SMA, which could be exploited to control devices or execute code on their cloud platforms. These vulnerabilities pose risks to grid stability and user privacy, as they can be leveraged for attacks that disrupt power generation and demand balance.…
Read More
Dozens of solar inverter flaws could be exploited to attack power grids – PRSOL:CC
Summary: Dozens of vulnerabilities found in solar inverters from Sungrow, Growatt, and SMA present severe security risks, potentially allowing remote code execution and unauthorized control of devices. An attack could disrupt grid stability and compromise user privacy, with significant implications for energy management. Patches have been released by the affected vendors to mitigate these vulnerabilities.…
Read More
More Solar System Vulnerabilities Expose Power Grids to Hacking 
Summary: Researchers at Forescout have identified over 90 vulnerabilities within solar power products from leading vendors like Sungrow, Growatt, and SMA, highlighting serious risks to electrical grids. Newly discovered vulnerabilities could allow attackers to hijack inverters and execute arbitrary code, potentially disrupting power supply and compromising user data.…
Read More
Apache VCL Hit by SQL Injection and XSS Vulnerabilities
Summary: Apache VCL is facing critical security vulnerabilities, including an SQL injection flaw and a cross-site scripting (XSS) vulnerability. These flaws could lead to unauthorized data manipulation and system compromises. Immediate upgrading to version 2.5.2 is recommended to address these issues.

Affected: Apache VCL versions 2.1 through 2.5.1

Keypoints :

Critical SQL injection vulnerability identified in the New Block Allocation form (CVE-2024-53678).…
Read More
PoC Exploit Released for Windows Explorer Vulnerability Exposing NTLM Hashes
Summary: A security vulnerability identified as CVE-2025-24071 enables NTLM hash leakage from Windows systems when extracting maliciously crafted .library-ms files from RAR/ZIP archives. This flaw, which has a CVSS score of 7.5, arises from Windows Explorer’s automatic handling of these files, leading to unintentional NTLM authentication handshakes with attacker-controlled SMB servers.…
Read More
SQLi, XSS, and SSRF: Breaking Down Zimbra’s Latest Security Threats
The Zimbra Collaboration Suite (ZCS) has recently addressed several critical security vulnerabilities, including stored cross-site scripting (XSS), SQL injection (SQLi), and server-side request forgery (SSRF). Administrators are urged to apply patches and adopt best practices for enhanced security. Affected: Zimbra Collaboration Suite

Keypoints :

Zimbra Collaboration Suite is a popular email and collaboration platform.…
Read More
INDOHAXSEC: Emerging Indonesian Hacktivist Collective Targets Southeast Asia
Summary: A new report by Arctic Wolf Labs reveals the emergence of the Indonesian hacktivist group INDOHAXSEC, which has been conducting various cyberattacks, including DDoS and ransomware attacks, largely motivated by political ideologies. The group, which is known for targeting entities perceived to support Israel, has also formed an alliance with the pro-Russian group NoName057(16).…
Read More
Threat Spotlight: Credential Theft vs. Admin Control—Two Devastating Paths to VPN Exploitation
This report discusses the ongoing exploitation of older VPN vulnerabilities, particularly CVE-2018-13379 and CVE-2022-40684, highlighting how attackers, including cybercriminal and state-sponsored groups, continue to target these flaws for credential theft and administrative control. The research indicates substantial growth in discussions around Fortinet VPN vulnerabilities on cybercriminal forums, illustrating their significance in the current threat landscape.…
Read More
Koha Library Systems at High Risk, Patch Immediately
Summary: A critical SQL Injection vulnerability (CVE-2025-22954) has been discovered in Koha, a popular open-source library management system, affecting multiple versions. This flaw allows both unauthenticated and authenticated users to inject arbitrary SQL instructions, posing a severe risk to sensitive data. Koha version 24.11.02 has been released to address this issue, along with additional security enhancements.…
Read More