CVE-2017-7620 Mantis Bug Tracker
CVE-2017-7620 Mantis Bug Tracker 1.3.10 / v2.3.0 CSRF Permalink Injection
Share
RSS
More Articles…
- What is phishing? Understanding and identifying social engineering attacks
- Avoid Ransomware: That’s why it’s best not to take any risks
- Double extortion ransomware: What they are and how to defend yourself
- Zero-Day attack: what they are and how to defend yourself with SOCaaS
- Monitoring system, an overview
- Data Exfiltration: defense against data theft
- Install a Let’s Encrypt certificate on Debian based machine
- WastedLocker: Next generation ransomware
Categories …
- Backup as a Service (2)
- Acronis Cloud Backup (10)
- Veeam Cloud Connect (4)
- Cloud Conference (3)
- Cloud CRM (1)
- Cloud Server/VPS (20)
- Conferenza Cloud (4)
- ICT Monitoring (4)
- Log Management (2)
- News (16)
- ownCloud (4)
- Privacy (6)
- Secure Online Desktop (14)
- Security (6)
- Ethical Phishing (1)
- SOCaaS (10)
- Vulnerabilities (83)
- Web Hosting (12)
Tags
Acronis
Acronis backup
Acronis Cloud Backup
BaaS
Backup
black friday
CDN
cloud
cloud computing
Cloud Conference
cloud provider reggio emilia
cloud server
cloud service provider
cloud services
cyber security
cyber security
cyber threat
Demo Cloud Server
GDPR
Machine Learning
Monitoraggio infrastruttura ICT
nextgen siem
online hosting
owncloud
owncloud
pentest
Phishing
Plesk
Ransomware
Ransomware
server virtuale
sicurezza
siem
Smart Working
SOAR
SOCaaS
UEBA
VDS
Virtual Machine
vps
web hosting
webinar
Wordpress
Zabbix
Zabbix as a Service
Dark Reading:
- Emotet Takedown: Short-Term Celebration, Long-Term Concerns February 8, 2021Security researchers examine how and when Emotet's operators may resurface, and the threats that could evolve in the meantime.
- Malicious Code Injected via Google Chrome Extension Highlights App Risks February 8, 2021An open source plug-in purportedly introduced tracking and malicious download code to infect nearly 2 million users, reports say.
- Hacker Raised Chemical Settings at Water Treatment Plant to Dangerous Levels February 8, 2021Remote access interface breached at Florida utility; attacker detected raising level of sodium hydroxide in water.
- What's the Difference Between 'Observability' and 'Visibility' in Security? February 8, 2021To drive holistic security success, we have to start with the interlinking of visibility and observability.
- Android App Infects Millions of Devices With a Single Update February 8, 2021The popular Barcode Scanner app, which as been available on Google Play for years, turned malicious with one software update.
- Hidden Dangers of Microsoft 365's Power Automate and eDiscovery Tools February 8, 2021Attackers are using legitimate enterprise tools to execute attacks and carry out malicious actions. Security teams must take action now.
- Spotify Hit With Another Credential-Stuffing Attack February 5, 2021This marks the second credential-stuffing attack to hit the streaming platform in the last few months.
- Security Researchers Push for 'Bug Bounty Program of Last Resort' February 5, 2021An international program that pays out hefty sums for the discovery of software vulnerabilities could spur greater scrutiny of applications and lead to better security.
- Pro Tip: Don't Doubt Yourself February 5, 2021The Edge asked seasoned security pros what they wish they had known when they first got into the field.
- Cybercrime Goes Mainstream February 5, 2021Organized cybercrime is global in scale and the second-greatest risk over the next decade.
Full Disclosure
- Trojan-Spy.Win32.WebCenter.a / Information Disclosure February 8, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/e3cf225a94c6be5a26fc21a1ec83f418.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.WebCenter.a Vulnerability: Information Disclosure Description: The trojan creates a dir named "webcenter" under "C:\Windows\SysWOW64" and drops various exes and html pages to return information about the...
- Trojan-Spy.Win32.SpyEyes.awow / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/e61a6755db1c59eb1d219b761de925f4.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.SpyEyes.awow Vulnerability: Insecure Permissions EoP Description: SpyEyes.awow creates a insecure dir named "$Recycle$" under the c:\ drive, granting change (C) permissions to the authenticated users group. Also, drops...
- Trojan.Win32.Delf.uq / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/a4ea99b54e171274795f14a4ac7f17ba.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan.Win32.Delf.uq Vulnerability: Insecure Permissions EoP Description: Malware creates an vulnerable dir named "downsoft" under c:\ drive granting change (C) permissions to the authenticated users group. Type: PE32 MD5:...
- Email-Worm.Win32.Sircam.eb / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/cd88a9b686acd9ccf23dba8d248129b4.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Email-Worm.Win32.Sircam.eb Vulnerability: Insecure Permissions EoP Description: Sircam.eb creates a vuln dir under c:\ drive named "Windupdt" and drops an exe named "winupdate.exe". Grants change (C) permissions to...
- Trojan.Win32.Cospet.abg / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/5f5b308853b9aa9243390c135ff6ba1b.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan.Win32.Cospet.abg Vulnerability: Insecure Permissions EoP Description: Cospet.abg, creates an vulnerable dir named "dir" under c:\ drive granting change (C) permissions to the authenticated users group. Sends SYN packet to TCP port...
- Trojan.Win32.Comei.pgo / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/7cb253cf47b6de8adfea559e51950c17.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan.Win32.Comei.pgo Vulnerability: Insecure Permissions EoP Description: Trojan malware creates an vulnerable dir named "dir" under c:\ drive granting change (C) permissions to the authenticated users group. Type: PE32 MD5:...
- Trojan-Spy.Win32.SpyEyes.auwl / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/0115ba22a0d009a13d0748027dd62e2a.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.SpyEyes.auwl Vulnerability: Insecure Permissions EoP Description: SpyEyes creates a vuln dir named "cleansweep.exe" under c:\ drive and drops an exe inside also named "cleansweep.exe". The vulnerable trojan...
- Trojan-Spy.Win32.SpyEyes.auqj / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/ea6ed38ab5264cd92f0d42eb020e87d8.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan-Spy.Win32.SpyEyes.auqj Vulnerability: Insecure Permissions EoP Description: SpyEyes.auqj creates a hidden vuln dir named "wedfsadeex.exe" under c:\ drive, granting change (C) permissions to the authenticated users group. Type:...
- Trojan.Win32.Gentee.h / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/2bd5672432a545db03db0e09c120d42e.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan.Win32.Gentee.h Vulnerability: Insecure Permissions EoP Description: Trojan Gentee.h creates a vuln dir named "Paltalk" under c:\ drive, granting change (C) permissions to the authenticated users group. Type: PE32 MD5:...
- Trojan.Win32.Gentee.b / Insecure Permissions EoP February 7, 2021Posted by malvuln on Feb 07Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/86e63bb63f3baf48ad3bf24c3f5b7e40.txt Contact: malvuln13 () gmail com Media: twitter.com/malvuln Threat: Trojan.Win32.Gentee.b Vulnerability: Insecure Permissions EoP Description: Trojan creates a vuln dir under c:\ drive named "WINNT", granting change (C) permissions to the authenticated user group. Type: PE32 MD5:...
Customers
Twitter FEED
Recent activity
-
SecureOnlineDesktop
Tempo di lettura: 6 min Il 2020 si e' rivelato un anno complicato sotto molti aspetti. Il Covid-19 ha colpito dura… https://t.co/C717Ph2KgP
-
SecureOnlineDesktop
The IT world continues to evolve and the same goes for industry acronyms. One of these is the term MSSP which, in a… https://t.co/FUIrW1Rccj
-
SecureOnlineDesktop
Tempo di lettura: 5 min Il mondo IT continua ad evolversi e lo stesso vale per gli acronimi di settore. Uno di que… https://t.co/qpaZvclxWr
-
SecureOnlineDesktop
Tempo di lettura: 5 minLa minaccia ransomware (o cyber estorsione) e' in aumento. Nel 2020 si e' registrato un picc… https://t.co/kZiVGiKiHT
-
SecureOnlineDesktop
The ransomware (or cyber extortion) threat is on the rise. In 2020, there was a spike in the number of reported inc… https://t.co/i6NPit3Dgy
Newsletter
Products and Solutions
Partners
Cloud Models
News
- What is phishing? Understanding and identifying social engineering attacks February 8, 2021
- Avoid Ransomware: That’s why it’s best not to take any risks February 3, 2021
- Double extortion ransomware: What they are and how to defend yourself February 1, 2021
- Zero-Day attack: what they are and how to defend yourself with SOCaaS January 6, 2021
- Monitoring system, an overview January 4, 2021
Google Reviews
Riccardo Crocilli
14:02 22 Mar 19
Ho collaborato con Secure Online... Desktop per importanti progetti IT. Si sono dimostrati negli anni partner seri, competenti e professionali , l' Azienda dimostra una grande esperienza maturata in tanti anni di consulenza e lavoro su contesti IT innovativi.
Davvero consigliata !!!!!
In particolare vorrei sottolineare la figura che piu’ racchiude e sintetizza le qualità della Secure Online Desktop , il suo AD Ing. Piergiorgio Venuti, professionista impagabile , sia dal punto di vista tecnico/organizzativo che soprattutto (e non dimeno) come persona , capace di gestire , risolvere e approcciare qualsivoglia attività/problematica, davvero un grande !!!!read more
Filippo Scavone
13:39 22 Mar 19
Dopo anni di collaborazione confermo la... professionalità, competenza ed affidabilitàread more
clickday at2016
13:36 22 Mar 19
Con lo studio di consulenza di cui sono... socio, ATS – CONSULENTI ASSOCIATI S.r.l., collaboriamo già da alcuni anni, in materia di Sicurezza informatica in ambito GDPR, con la Secure Online Desktop. Si sono dimostrati partner seri, competenti e professionali sia su clienti PMI sia su Grandi imprese.read more
Paolo Raimondi
11:08 21 Apr 18
La Polimatica Progetti Srl, azienda di... cui sono titolare, collabora con soddisfazione da alcuni anni con Secure Online Desktop. L'Azienda è costituita da professionisti seri e competenti. Insieme a loro abbiamo costruito un sistema organizzato di soluzioni ICT, servizi e attività di consulenza per la compliance alla normativa in materia di protezione dei dati personali (GDPR)read more
Claudia Cavatorta
21:45 20 Apr 18
Ormai da anni lavoriamo con Secure... Online Desktop e ci siamo trovati sempre molto bene. L'Azienda ha dimostrato disponibilità costante nel risolvere problemi ed esigenze che nel nostro tipo di lavoro si presentano molto frequentemente. Sempre puntuali nell'implementare le modifiche richieste e propositivi riguardo a soluzioni che possano apportare migliorie ad un sistema già ottimale. Per quanto riguarda il prodotto: la piattaforma che abbiamo a disposizione funziona molto bene, la connessione è veloce e siamo sicuri di conservare i nostri dati in assoluta sicurezza.read more
Omid Fazeli
06:59 20 Apr 18
They have a lot of solutions for any... kind of business. Lower prices than many others. The support service is always active and efficient.read more
Miki A.
13:47 16 Apr 18
Prodotti eccellenti, a partire dai... classici hosting, sino a VPS e cloud strutturati.
Tempi veloci e staff preparato!read more
Paolo Raimondi
2018-04-21T11:06:26+0000
La Polimatica Progetti Srl, azienda di... cui sono titolare, collabora con soddisfazione da alcuni anni con Secure Online Desktop. L'Azienda è costituita da professionisti seri e competenti. Insieme a loro abbiamo costruito un sistema organizzato di soluzioni ICT, servizi e attività di consulenza per la compliance alla normativa in materia di protezione dei dati personali (GDPR).read more
Ilaria Miglietta
2018-04-21T04:16:37+0000
Servizi affidabili e di semplice... utilizzo. I loro tecnici molto attenti alle esigenze del cliente, continuate cosìread more
Francesca Marastoni
2018-04-20T11:41:31+0000
Excellent service company with... wonderful stuff. Highly recommended.
Ottima azienda, servizi molto utili, staff qualificato e competente. Raccomandata!read more
Alessio Liga
2018-04-20T08:25:22+0000
Servizi di alto livello, competenti e... disponibili a accettare nuove sfide per sviluppare business
Ottimo supportoread more
Omid Fazeli
2018-04-20T07:03:54+0000
They have a lot of solutions for any... kind of business. Lower prices than many others. The support service is always active and efficient.read more
Matteo Revelli
2018-04-19T22:39:41+0000
Ottima azienda, offre servizi di alta... qualità con personale competente e disponibile.read more
Lorenzo Munari
2018-04-19T16:25:10+0000
Azienda molto seria e affidabile.
E'... un piacere poter collaborare con realtà di questo tiporead more
Francisco Amadi
2018-04-19T10:41:17+0000
Ho avuto il piacere di collaborare con... loro e spero vivamente che succeda di nuovo. Competenti, professionali, precisi e cordiali!read more
Davide Michelotto
2018-04-19T07:42:23+0000
Ottimo servizio, seri professionisti al... timone della società e celerità nei tempi di risposta, oltre ogni aspettativa.read more
Luca Prati
2018-04-18T10:12:13+0000
Azienda eccellente, consulenza... customizzata e puntuale.
Un ottimo fornitore.
Io personalmente ho parlato con l' Ing. Venuti, valore aggiunto indubbiamente.read more
About
Copyright © 2011 Secure Online Desktop s.r.l. All Rights Reserved.
VAT: 07485920966 “Cloud Computing services - Software cloud - Cloud server - VPS” Terms of ServicePrivacy Policy
ISO Certifications