Exploitation attempts for Oracle E-Business Suite flaw observed after PoC release CVE-2022-32372
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject.php?id=.
A Handy Breakout Board For E-Paper Hacking
If you follow the exploits of (and trust us, you should), you’ll know that for some time now he’s been...
CVE-2022-32373
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_exam.php?id=.
Eliza and the Google Intelligence
The news has been abuzz lately with the news that a Google engineer — since put on leave — has...
CVE-2022-32374
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_subject_routing.php?id=.
Ransomware gang creates site for employees to search for their stolen data
The ALPHV ransomware gang, aka BlackCat, has brought extortion to a new level by creating a dedicated website that allows...
Crypoto Wallet Apps Cloned to Steal Crypto
Web3 users are being targeted under the SeaFlower operation that aims to infect users through imposter websites and SEO poisoning...
CVE-2022-32375
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/get_timetable.php?id=.
New Panchan Peer-To-Peer Botnet Targeting Linux Servers Using Concurrency Features
Dubbed Panchan by Akamai Security Research, the malware "utilizes its built-in concurrency features to maximize spreadability and execute malware modules"...
Gallium Group Expands to New Geographical Areas with PingPull RAT
Chinese state-sponsored Gallium APT group is using a new, difficult-to-detect RAT—PingPull—in its espionage campaigns. The RAT can leverage ICMP, raw...