Content Paint
Search
Sign in
Membership

vulnerabilities

News  | Sep 01, 2023
Academics warn over "problematic metrics and documentation" in CVSS system
Academics warn over "problematic metrics and documentation" in CVSS system

A study out of Germany has highlighted shortcomings in the CVSS system and the way security vulnerabilities are assessed and scored

News  | Aug 31, 2023
Subdomain hijacking holes run rampant, say experts
Subdomain hijacking holes run rampant, say experts

The little-known hacking technique of subdomain hijacking is threatening thousands of sites and their visitors despite efforts to eradicate

 |  News  | Aug 22, 2023
Adobe patch nightmare: Trio of application server vulnerabilities being exploited
Adobe ColdFusion vulnerabilities exploited CVE-2023-26359

Want to let criminals “query your databases, add/change/delete files, export data or files off your server”? No, then you should probably be paying close attention to whether you are running Adobe ColdFusion and if you are exposed...

News  | Aug 22, 2023
MobileIron under active attack, admins warned to update
MobileIron under active attack, admins warned to update

Ivanti is warning of attacks on its MobileIron platform due to improper handling of APIs

vulnerabilities  | Aug 19, 2023
CVE for “Damn Vulnerable Web Application” rejected after troubling, bemusing hackers
CVE for “Damn Vulnerable Web Application” rejected after troubling, bemusing hackers

"To the 731 people who have DVWA exposed to the internet, I apologise for CVE-2023-39848, I recommend you temporarily remove them from the internet till I can create a patch."

News  | Aug 18, 2023
When airplane mode isn't airplane mode: iOS malware spoofs standby
When airplane mode isn't airplane mode: iOS malware spoofs standby

Researchers say that iOS can be manipulated to create a phony "airplane mode" that allows for the background transmission of data

vulnerabilities  | Aug 16, 2023
Citrix ShareFile vulnerability being exploited amid warnings of a “huge spike” in attacks
Citrix ShareFile vulnerability CVE-2023-24489 exploited

Pre-auth RCE in Citrix ShareFile has the potential to be the next MOVEit, or Accellion, or GoAnywhere, or Aspera Faspex, or...

cybersecurity  | Aug 07, 2023
Most exploited vulnerabilities 2022: Five Eyes’ list of CVEs comes with a twist in the tail
most exploited vulnerabilities 2022

Two CVEs dominate attack traffic and one will look very familiar: So will six others...

Citrix  | Jul 21, 2023
Citrix zero day used to attack critical infrastructure -- IOCs and detections now available
NetScaler vulnerability, CVE-2023-3519 IOCs

Attackers dropped a webshell, collected and exfiltrated Active Directory data, then ran into some healthy obstacles...

Interviews, Insight, Intelligence for Hungry Folks

© 2025 The Snack
©  2025 The Snack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.