SQL injection vulnerability in Enalean Tuleap before 188.8.131.52 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter to plugins/docman. (CVSS:6.5) (Last Update:2015-11-20)
Cross-site request forgery (CSRF) vulnerability in Axway SecureTransport 5.1 SP2 and earlier allows remote attackers to hijack the authentication of unspecified users for requests that upload arbitrary files via a crafted request to api/v1.0/files/. (C…
SQL injection vulnerability in the CP Multi View Event Calendar plugin 1.01 for WordPress allows remote attackers to execute arbitrary SQL commands via the calid parameter. (CVSS:7.5) (Last Update:2014-11-10)
American Express announced its new American Express Token Service which brings tokenization to payment card transactions.
Researchers at Kaspersky Lab discovered a cache of Windows and Linux plug-ins for the BlackEnergy malware that, in addition to data theft, allow it to target Cisco routers and even destroy hard drives it infects.
Facebook has entered the hidden services with a new .onion site that will let Tor Network users sign into the world’s (second) most populace social network.
Google is working on a new system that enables the company to collect randomized information about the way that users are affected by unwanted software on their machines, without gathering identifying data about the users. The system is known as RAPPOR (Randomized Aggregatable Privacy-Preserving Ordinal Response) and Google currently is testing it in Chrome. The […]