SuperBackup version 2.0.5 for iOS suffers from a persistent cross site scripting vulnerability.

NICE Recording eXpress versions 6.0.x, 6.1.x, 6.2.x, 6.3.x, and 6.5.x suffer from cross site scripting, root backdoor, unauthenticated access, fail authorization, insecure cookie handling, and remote SQL injection vulnerabilities.

An elevation of privilege vulnerability exists in Microsoft Windows when the Win32k component fails to properly handle objects in memory. This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This Metasploit module is tested against Windows 10 v1703 x86.

This Metasploit module exploits a backdoor in Webmin versions 1.890 through 1.920. Only the SourceForge downloads were backdoored, but they are listed as official downloads on the project's site. Unknown attacker(s) inserted Perl qx statements into the build server's source code on two separate occasions: once in April 2018, introducing the backdoor in the 1.890 release, and in July 2018, reintroducing the backdoor in releases 1.900 through 1.920. Only version 1.890 is exploitable in the default install. Later affected versions require the expired password changing feature to be enabled.

Netis E1+ version 1.2.32533 suffers from having a hardcoded backdoor root account.

webERP version 4.15.1 suffers from an unauthenticated backup file disclosure vulnerability.

OpenSSH 3.6.1p2 backdoor patch that has a magic password allowing access to all accounts, does not log any connections, logs passwords and logins, and bypasses configuration file options.

OpenSSH patch tested with versions 4.2p1 and 4.7p1 that allows for a hidden user to login with root permissions.

This patch is a backdoor to bash that will create a setuid backdoor shell in /tmp if run as root.

This patch for OpenSSH 6.0 Portable adds a hardcoded skeleton key, removes connection traces in the log files, usernames and passwords both in and out are logged, and more.

Swaparoo - Windows backdoor method for Windows Vista/7/8. This code sneaks a backdoor command shell in place of Sticky Keys prompt or Utilman assistant at login screen.

This article explains the technical procedure and challenges involved in extracting data and artifacts from iPhone backups.

Ajmal Ahmady, Afghanistan's minister of industries and commerce, outlines government efforts to make the country more conducive to business.

Having experienced issues with security and bureaucracy for decades, Pakistan is making a comeback as a tourism destination. However, foreign investors have yet to make their presence felt in the sector.

This week energy developer BayWa r.e. published its Energy Report 2019, which surveyed 1,200 European corporations about their attitudes toward renewable energy.

Continuing on U.S. President Trump’s campaign promise to revive the coal industry, on Tuesday, August 21, the Environmental Protection Agency (EPA) announced plans to significantly alter the Clean Power Plan (CPP), shrinking some of the emission reduction targets that were set in place under the CPP by former President Obama.

This week energy developer BayWa r.e. published its Energy Report 2019, which surveyed 1,200 European corporations about their attitudes toward renewable energy.

Jim Keffer is Republican state lawmaker in Texas with a permit to carry a concealed weapon and doubts about whether human activity is causing global warming.