==========================
== Gharib Personal Blog ==
==========================
A Techi Personal Blog

No need to hack when its leaking OrthoMinds edition

No need to hack when its leaking OrthoMinds edition

Exposed database backups discovered and reported by researcher @JayelTee are now being reported in more mainstream news after OrthoMinds issued a press about the incident. Marianne Kolbasuk McGee reports: A vendor of cloud-based orthodontic practice software is notifying an undisclosed number of patients that their data was exposed to the

Exposed database backups discovered and reported by researcher @JayelTee are now being reported in more mainstream news after OrthoMinds issued a press about the incident. Marianne Kolbasuk McGee reports: A vendor of cloud-based orthodontic practice software is notifying an undisclosed number of patients that their data was exposed to the internet for 10 days last…

Read more...

CVE-2025-2603 - SourceCodester Kortex Lite Advocate Office Management System SQL Injection Vulnerability

CVE-2025-2603 - SourceCodester Kortex Lite Advocate Office Management System SQL Injection Vulnerability

CVE ID : CVE-2025-2603 Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago Description : A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. This issue affects some unknown processing of the file deactivate.php. The manipulation of the argument ID leads

CVE ID : CVE-2025-2603
Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago
Description : A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. This issue affects some unknown processing of the file deactivate.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Read more...

CVE-2025-25036 - Jalios JPlatform XML External Entity Reference Vulnerability

CVE-2025-25036 - Jalios JPlatform XML External Entity Reference Vulnerability

CVE ID : CVE-2025-25036 Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago Description : Improper Restriction of XML External Entity Reference vulnerability in Jalios JPlatform allows XML Injection.This issue affects all versions of JPlatform 10 before 10.0.8 (SP8). Severity: 6.8 | MEDIUM Visit the link for more details, such as

CVE ID : CVE-2025-25036
Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago
Description : Improper Restriction of XML External Entity Reference vulnerability in Jalios JPlatform allows XML Injection.This issue affects all versions of JPlatform 10 before 10.0.8 (SP8).
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Read more...

CVE-2025-2601 - SourceCodester Kortex Lite Advocate Office Management System SQL Injection Vulnerability

CVE-2025-2601 - SourceCodester Kortex Lite Advocate Office Management System SQL Injection Vulnerability

CVE ID : CVE-2025-2601 Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago Description : A vulnerability, which was classified as critical, was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. This affects an unknown part of the file activate_reg.php. The manipulation of the argument ID leads

CVE ID : CVE-2025-2601
Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago
Description : A vulnerability, which was classified as critical, was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. This affects an unknown part of the file activate_reg.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Read more...

CVE-2025-2602 - SourceCodester Kortex Lite Advocate Office Management System SQL Injection Vulnerability

CVE-2025-2602 - SourceCodester Kortex Lite Advocate Office Management System SQL Injection Vulnerability

CVE ID : CVE-2025-2602 Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago Description : A vulnerability has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file deactivate_reg.php. The manipulation of the argument ID leads

CVE ID : CVE-2025-2602
Published : March 21, 2025, 8:15 p.m. | 8 hours, 31 minutes ago
Description : A vulnerability has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file deactivate_reg.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Read more...

Turning a Kombucha Bottle Into a Plasma Tube

Turning a Kombucha Bottle Into a Plasma Tube

Kombucha! It’s a delicious fermented beverage that is kind to your digestive system and often sold in glass bottles. You don’t just have to use those bottles for healthy drinks, …read more

Kombucha! It’s a delicious fermented beverage that is kind to your digestive system and often sold in glass bottles. You don’t just have to use those bottles for healthy drinks, …read more

Read more...

CVE-2025-25035 - Jalios JPlatform Cross-site Scripting XSS

CVE-2025-25035 - Jalios JPlatform Cross-site Scripting XSS

CVE ID : CVE-2025-25035 Published : March 21, 2025, 7:15 p.m. | 9 hours, 30 minutes ago Description : Improper Neutralization of Input During Web Page Generation Cross-site Scripting vulnerability in Jalios JPlatform 10 allows for Reflected XSS and Stored XSS.This issue affects JPlatform 10: before 10.0.8 (SP8), before 10.0.7 (SP7), before 10.0.6

CVE ID : CVE-2025-25035
Published : March 21, 2025, 7:15 p.m. | 9 hours, 30 minutes ago
Description : Improper Neutralization of Input During Web Page Generation Cross-site Scripting vulnerability in Jalios JPlatform 10 allows for Reflected XSS and Stored XSS.This issue affects JPlatform 10: before 10.0.8 (SP8), before 10.0.7 (SP7), before 10.0.6 (SP6) and Jalios Workplace 6.2, Jalios Workplace 6.1, Jalios Workplace 6.0, and Jalios Workplace 5.3 to 5.5
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Read more...

Top 20 Cybersecurity Companies You Need to Know in 2025

Top 20 Cybersecurity Companies You Need to Know in 2025

The cybersecurity industry is constantly evolving. Learn about the top cybersecurity companies and what each does best. The post Top 20 Cybersecurity Companies You Need to Know in 2025 appeared first on eSecurity Planet.

The cybersecurity industry is constantly evolving. Learn about the top cybersecurity companies and what each does best.

The post Top 20 Cybersecurity Companies You Need to Know in 2025 appeared first on eSecurity Planet.

Read more...

Building a Handheld Pong Game

Building a Handheld Pong Game

Pong was one of the first video games to really enter the public consciousness. While it hasn’t had the staying power of franchises like Zelda or Call of Duty, it nonetheless still resonates …read more

Pong was one of the first video games to really enter the public consciousness. While it hasn’t had the staying power of franchises like Zelda or Call of Duty, it nonetheless still resonates …read more

Read more...

CVE-2025-30349 - Horde IMP Cross-Site Scripting XSS Vulnerability

CVE-2025-30349 - Horde IMP Cross-Site Scripting XSS Vulnerability

CVE ID : CVE-2025-30349 Published : March 21, 2025, 5:15 p.m. | 11 hours, 30 minutes ago Description : Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript

CVE ID : CVE-2025-30349
Published : March 21, 2025, 5:15 p.m. | 11 hours, 30 minutes ago
Description : Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript code), as exploited in the wild in March 2025.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Read more...
Previous Page 6 of 576 Next Page