Feed | nolanbkennedy.com

CVE-2020-8496: Stored XSS in Kronos Web Time and Attendance (webTA) 4.1.x

Overview This advisory addresses a Stored XSS vulnerability in Kronos Web Time and Attendance (webTA) affecting versions 4.1.x - 5.0 via...

Overview This advisory addresses a Stored XSS vulnerability in Kronos Web Time and Attendance (webTA) affecting versions 3.8.x - 4.0 via...

Overview Authenticated remote privilege escalation vulnerability in Kronos WebTA v3.8.x affecting the “com.threeis.webta.H402editUser”...

Overview Authenticated remote privilege escalation vulnerability in Kronos WebTA v3.8.x affecting the “com.threeis.webta.H491delegate”...

Overview This advisory addresses a Insecure Direct Object Reference (IDOR) vulnerability in the Xtivia Web Time and Expense (WebTE)...

Overview This advisory addresses a Stored XSS vulnerability in Verodin Director affecting version 3.5.3.0 and earlier via input fields of...

Overview This advisory addresses a Information Disclosure vulnerability in Verodin Director affecting version 3.5.3.1 and earlier where...

Mirror Blog Post: XXE Vulnerability in BlackBerry AtHoc (Networked Crisis Communication) Platform Recently I had the opportunity to test...

By: Stephanie Carruthers and Nolan B. Kennedy Mirror Blog Post: Guide to Creating a Cybersecurity Challenge for Kids “Right now, we’ve...