je.st

Home › zeroday

Tag: zeroday

Joomla receives patches for zero-day SQL injection vulnerability

2014-03-10 19:12:52| InfoWorld: Top News

Recently released security updates for the popular Joomla CMS (content management system) address a SQL injection vulnerability that poses a high risk and can be exploited to extract information from the databases of Joomla-based sites. The Joomla Project released versions 3.2.3 and 2.5.19 of the open-source CMS Thursday. Both updates address two cross-site scripting (XSS) vulnerabilities in core components, but version 3.2.3 also patches a SQL injection flaw, publicly disclosed in early February, and an unauthorized log-in flaw in the Gmail-based authentication plug-in.

Tags: sql receives injection patches

Internet Explorer 'SnowMan' zero-day spreading: Use alternative or patch with KB 2934088

2014-02-26 15:15:27| InfoWorld: Top News

Two weeks ago FireEye discove

Tags: with internet alternative internet explorer

IE10 under attack as hackers exploit zero-day bug

2014-02-14 13:14:11| InfoWorld: Top News

FireEye today said it had discovered that attackers are actively exploiting a new, unpatched vulnerability in Internet Explorer 10 (IE10). Microsoft confirmed the Milpitas, Calif. security company's report.

Tags: bug attack exploit hackers

OpenSuse forums hack raises vBulletin zero-day exploit possibility

2014-01-09 14:47:12| InfoWorld: Top News

A compromise of the community forums for the OpenSuse Linux distribution Tuesday sparked concern that hackers have access to a previously unknown exploit for the popular vBulletin Internet forum software. The attack resulted in hackers replacing some pages on the forums.opensuse.org website and gaining access to the site's user database. The forums had almost 80,000 registered members at the time of the compromise.

Tags: forums possibility hack raises