Channel address:
Categories:
News
Language: English
Subscribers:
2.46K
Description from channel
Every day new posts about vulnerabilities and cybersecurity news. Active 24/7
Group: @VulnerabilityNewsGroup
Twitter: @VulnerabilityN
For any question contact @TomRobb
Ratings & Reviews
Reviews can be left only by registered users. All reviews are moderated by admins.
5 stars
0
4 stars
1
3 stars
0
2 stars
1
1 stars
1
The latest Messages 2
2022-08-30 21:46:59
Chinese Hackers Target Energy Sector in Australia, South China SeaRead More
99 views18:46
2022-08-30 20:46:38
Security Culture: An OT Survival StoryRead More
102 views17:46
2022-08-30 19:58:40
Watering Hole Attacks Push ScanBox KeyloggerRead more
109 views16:58
2022-08-30 18:51:07
Cohesity Research Reveals that Reliance on Legacy Technology Is Undermining How Organizations Respond to RansomwareRead More
116 views15:51
2022-08-30 17:54:18
Phishing Campaign Targets PyPI Users to Distribute Malicious CodeRead More
128 views14:54
2022-08-30 17:54:17
Building a Strong SOC Starts With PeopleRead More
127 views14:54
2022-08-30 17:54:16
Google Expands Bug Bounties to its Open Source ProjectsRead More
126 views14:54
2022-08-30 16:57:20
Cerberus Sentinel Announces Acquisition of CUATROiRead More
136 views13:57
2022-08-30 15:56:07
A Peek Into CISA's Post-Quantum Cryptography RoadmapRead More
136 views12:56
2022-08-30 01:49:52
In oauth2-server (aka node-oauth2-server) through 3.1.1, the value of the redirect_uri parameter received during the authorization and token request is checked against an incorrect URI pattern ("[a-zA-Z][a-zA-Z0-9+.-]+:") before making a redirection. This allows a malicious client to pass an XSS payload through the redirect_uri parameter while making an authorization request. NOTE: this vulnerability is similar to CVE-2020-7741.
Published at: August 29, 2022 at 11:15PM
View on website
180 views22:49