News

Dark Reading1y
Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability
Blind SQL injection attacks are hard to pull off on a mass scale. However, an attacker with access to an account with the required privileges can exploit the vulnerability in Cacti with ease, ...
Exploit available: Patch FortiWeb vulnerability now!
On Thursday, Fortinet released an update for FortiWeb. Exploits have emerged that abuse the critical gap.
Bleeping Computer1y
WP Fastest Cache plugin bug exposes 600K WordPress sites to attacks
Today, the WPScan team from Automattic disclosed the details of an SQL injection vulnerability, tracked as CVE-2023-6063 and with a high-severity score of 8.6, impacting all versions of the plugin ...
The Verge10mon
Researchers say a bug let them add fake pilots to rosters used for TSA ...
Sure enough, we had discovered SQL injection and were able to use sqlmap to confirm the issue. Using the username of ‘ or ‘1’=’1 and password of ‘) OR MD5(‘1’) ...