HackDig : Dig high-quality web security articles for hacker

Siklu fixed a serious RCE vulnerability in the Siklu EtherHaul Radios

The security researcher Ian Ling discovered a serious remote command execution (RCE) flaw in the Siklu EtherHaul Radios devices. Security expert Ian Ling has discovered a severe remote command execution (RCE) vulnerability in the Siklu’s EtherHaul wireless point-to-point radios. The flaw could be exploited by remote unauthenticated attackers to execute comma
Publish At:2017-02-22 03:05 | Read:2633 | Comments:0 | Tags:Breaking News Hacking flaw RCE Siklu EtherHaul Radios IOS Vu

Attackers are exploiting a recently patched high-severity DoS flaw in BIND

Attackers are exploiting a recently patched high-severity DoS flaw, tracked as CVE-2016-2776, in the in the popular DNS software in BIND. Last month a vulnerability in the popular DNS software BIND, tracked as CVE-2016-2776, has been patched. The flaw could be exploited by a remote attacker to trigger a DoS condition using specially crafted DNS packets. The
Publish At:2016-10-13 10:30 | Read:2213 | Comments:0 | Tags:Breaking News Cyber Crime Hacking BIND Cybercrime DOS flaw e

Hackers target Facebook users exploiting Same Origin Policy vulnerability

Security Experts at Trend Micro discovered a series of hacking attacks targeting Facebook users and exploiting the Same Origin Policy vulnerability. A serious security vulnerability affects the default web browser of the Android OS lower than 4.4, according the data provided by Google official dashboard nearly the 66% of And
Publish At:2014-12-31 00:05 | Read:4908 | Comments:0 | Tags:Hacking Android BlackBerry CVE-2014-6041 Facebook flaw Metas

HTB finds SQLi flaws – CyberVor uses them

HTB finds SQLi flaws – CyberVor uses them News that Russian cybercriminals had amassed a database of 1.2 billion unique access credentials broke on August 5 when Hold Security published a report titled You Have Been Hacked. The report explained the method used by the gang, dubbed by Ho
Publish At:2014-08-15 10:39 | Read:3915 | Comments:0 | Tags:News News_hacks News_vulnerabilities credentials CyberVor fl

Stark CRM v1.0 Multiple Script Injection And Session Riding Vulnerabilities

Multiple stored XSS and CSRF vulnerabilities exist when parsing user input to several POST parameters. The application allows users to perform certain actions via HTTP requests without performing any validity checks to verify the requests. This can be exploited to perform certain actions with administrative privileges if a logged-in user visits a malicious w
Publish At:2014-08-13 01:55 | Read:3461 | Comments:0 | Tags:Internal advisory application crm csrf exploit flaw html inj

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud