1 Vulnerability Description On September 23, local time, Microsoft released cumulative security updates for the Internet Explorer (IE), fixing a remote code execution vulnerability (CVE-2019-1367) in IE. This vulnerability exists in the way the IE's script engine handles objects in memory. By tricking a user into accessing a crafted website...
Year: 2019
WebSphere Arbitrary File Read Vulnerability (CVE-2019-4505) Threat Alert
Vulnerability Description On September 18, 2019, IBM officially released a security bulletin, disclosing an arbitrary file read vulnerability (CVE-2019-4505) in WebSphere (web service deployment middleware), which allows remote attackers to read sensitive files on the server via a crafted URL. This could result in attackers viewing any files in a...
Information Security in the Workplace- System Update-v
With the advancement of IT-based transformation and the rapid development of IT, various network technologies have seen more extensive and profound applications, along with which come a multitude of cyber security issues. Come to find out what information security issues you should beware of in the workplace. (more…)
IP Reputation Report-10072019
Top 10 countries in attack counts: (more…)
phpStudy Backdoor Event Threat Alert
Event Overview Hangzhou Municipal Bureau of Public Security mentioned in its press release of Hangzhou Police Reports Work on Cracking Down on Cybercrimes and Achievements in the Cyberspace Cleanup Campaign 2019 released on September 20, 2019 that the phpStudy version released in 2016 was maliciously planted with a backdoor and...
phpMyAdmin Cross-Site Request Forgery Vulnerability (CVE-2019-12922) Threat Alert
Vulnerability Description phpMyAdmin is a free, open-source tool for administering MySQL and MariaDB. It is widely used to manage databases of websites created with WordPress, Joomla, and other content management platforms. (more…)
