Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Content by ODA155

ODA155
Member Since: March 12, 2014
Ninja
Posts: 104

Most Recently Posted

100 items
Comment: Re: Hard to imagine - ODA155 - 8/21/2015
Comment: Re: Remembering 911 - ODA155 - 5/20/2015
Comment: Re: Good. - ODA155 - 3/18/2015
Comment: Re: The human wiring - ODA155 - 3/10/2015
Comment: Re: NFL Response? - ODA155 - 1/28/2015
Comment: Re: NFL Response? - ODA155 - 1/27/2015
Comment: I have a fourth idea! - ODA155 - 1/20/2015
Comment: Re: So confuised - ODA155 - 1/6/2015
Comment: Re: Some big headlines - ODA155 - 12/22/2014
Comment: Re: Go offensive - ODA155 - 12/22/2014
Comment: Re: Vendors - ODA155 - 12/16/2014
Comment: Re: "Shut it all down" - ODA155 - 12/15/2014
Comment: Re: "Shut it all down" - ODA155 - 12/13/2014
Comment: Re: Pro or con? - ODA155 - 12/11/2014
Comment: Re: A Green Thumb - ODA155 - 12/9/2014
Comment: Re: "Shut it all down" - ODA155 - 12/9/2014
Comment: Re: insider? - ODA155 - 12/8/2014
Comment: Re: "Shut it all down" - ODA155 - 12/8/2014
Comment: Re: Backups? - ODA155 - 12/5/2014
Comment: Re: They have capacity - ODA155 - 11/24/2014
Comment: Re: We Don't Allow It - ODA155 - 11/24/2014
Comment: Re: adoption - ODA155 - 11/23/2014
Comment: Re: XP - ODA155 - 11/20/2014
Comment: Re: XP - ODA155 - 11/20/2014
Comment: Re: XP - ODA155 - 11/19/2014
Comment: No Accountability... - ODA155 - 11/5/2014
Comment: Re: extremely excited - ODA155 - 10/24/2014
Comment: Re: How to Become a CISO - ODA155 - 10/21/2014
Comment: Re: Understanding - ODA155 - 10/16/2014
Comment: Re: IT vs Security - ODA155 - 10/9/2014
Comment: Re: Good Reading - ODA155 - 9/22/2014
Comment: re: Why Database Assessment? - 6/12/2013
Comment: re: Security Minor Leagues - 5/17/2013
Comment: re: Security Minor Leagues - 5/17/2013


COVID-19: Latest Security News & Commentary
Dark Reading Staff 5/22/2020
How an Industry Consortium Can Reinvent Security Solution Testing
Henry Harrison, Co-founder & Chief Technology Officer, Garrison,  5/21/2020
Is Zero Trust the Best Answer to the COVID-19 Lockdown?
Dan Blum, Cybersecurity & Risk Management Strategist,  5/20/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
How Cybersecurity Incident Response Programs Work (and Why Some Don't)
This Tech Digest takes a look at the vital role cybersecurity incident response (IR) plays in managing cyber-risk within organizations. Download the Tech Digest today to find out how well-planned IR programs can detect intrusions, contain breaches, and help an organization restore normal operations.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-13485
PUBLISHED: 2020-05-25
The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.
CVE-2020-13486
PUBLISHED: 2020-05-25
The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection.
CVE-2020-13482
PUBLISHED: 2020-05-25
EM-HTTP-Request 1.1.5 uses the library eventmachine in an insecure way that allows an attacker to perform a man-in-the-middle attack against users of the library. The hostname in a TLS server certificate is not verified.
CVE-2020-13458
PUBLISHED: 2020-05-25
An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action.
CVE-2020-13459
PUBLISHED: 2020-05-25
An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action.