Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Content by SgS125

SgS125
Member Since: March 12, 2014
Ninja
Posts: 54

Most Recently Posted

54 items
Comment: Your link is invalid - SgS125 - 8/5/2015
Comment: hmmm - SgS125 - 4/15/2015
Comment: can you imagine? - SgS125 - 4/9/2015
Comment: RC4 - SgS125 - 3/30/2015
Comment: Lifetime? - SgS125 - 3/18/2015
Comment: a ticket to ride - SgS125 - 1/22/2015
Comment: Re: Proponent - SgS125 - 1/22/2015
Comment: Wrench in the works - SgS125 - 1/15/2015
Comment: Re: a bit late - SgS125 - 1/13/2015
Comment: Risk Management - SgS125 - 1/8/2015
Comment: Re: REGIN - SgS125 - 1/7/2015
Comment: REGIN - SgS125 - 1/7/2015
Comment: Re: Data Nationalism - SgS125 - 10/24/2014
Comment: Re: CGL Coverage - SgS125 - 10/20/2014
Comment: You sound tired Paul - SgS125 - 9/29/2014
Comment: Great write up! - SgS125 - 9/12/2014
Comment: I bet you meant "now" - SgS125 - 9/10/2014
Comment: broken link - SgS125 - 7/7/2014
Comment: too much access? - SgS125 - 5/13/2014
Comment: clarification - SgS125 - 5/7/2014
Comment: Re: We need proof - SgS125 - 4/11/2014
Comment: We need proof - SgS125 - 4/11/2014


Manchester United Suffers Cyberattack
Dark Reading Staff 11/23/2020
As 'Anywhere Work' Evolves, Security Will Be Key Challenge
Robert Lemos, Contributing Writer,  11/23/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-29144
PUBLISHED: 2020-11-27
In Ericsson BSCS iX R18 Billing & Rating iX R18, MX is a web base module in BSCS iX that is vulnerable to stored XSS via an Alert Dashboard comment. In most test cases, session hijacking was also possible by utilizing the XSS vulnerability. This potentially allows for full account takeover, or e...
CVE-2020-29145
PUBLISHED: 2020-11-27
In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web base module in BSCS iX that is vulnerable to stored XSS via the name or description field to a solutionUnitServlet?SuName=UserReferenceDataSU Access Rights Group. In most test cases, session hijacking was also possible by utilizing t...
CVE-2020-29136
PUBLISHED: 2020-11-27
In cPanel before 90.0.17, 2FA can be bypassed via a brute-force approach (SEC-575).
CVE-2020-29137
PUBLISHED: 2020-11-27
cPanel before 90.0.17 allows self-XSS via the WHM Transfer Tool interface (SEC-577).
CVE-2020-29135
PUBLISHED: 2020-11-27
cPanel before 90.0.17 has multiple instances of URL parameter injection (SEC-567).