CVE-2020-25911
A XML External Entity (XXE) vulnerability was discovered in the modRestServiceRequest component in MODX CMS 2.7.3 which can lead to an information disclosure or denial of service (DOS).
Read MoreMonth: October 2021
Video: Phishing ZIP With Malformed Filename, (Sun, Oct 31st)
This is a video for my diary entry “Phishing ZIP With Malformed Filename”, where I...
Read MoreSysinternals: Autoruns and Sysmon updates, (Sun, Oct 31st)
Minor updates to Autoruns and Sysmon were published: Autoruns v14.06 This Autoruns release fixes a crash happening for scheduled tasks containing spaces. Sysmon v13.30 This Sysmon update adds user fields for events, fixes a...
Read More
Remote Desktop Protocol (RDP) Discovery, (Sat, Oct 30th)
I have noticed a surge in probe against the RDP service in the past 2 weeks. In August, a remote...
Read MoreCVE-2021-36808
A local attacker could bypass the app password using a race condition in Sophos Secure Workspace for Android before version 9.7.3115.
Read More