Source |
Security Affairs |
Identifiant |
855248 |
Date de publication |
2018-10-20 08:33:02 (vue: 2018-10-21 18:00:47) |
Titre |
Thousands of applications affected by a zero-day issue in jQuery File Upload plugin |
Texte |
A security researcher discovered a zero-day vulnerability, tracked as CVE-2018-9206, that affects older versions of the jQuery File Upload plugin since 2010. Attackers can exploit the vulnerability to carry out several malicious activities, including defacement, exfiltration, and malware infection. The flaw was reported by the Akamai researcher Larry Cashdollar, he explained that many other packages that include […]
|
Envoyé |
Oui |
Condensat |
2010 2018 9206 activities affairs affected affects akamai appeared applications attackers can carry cashdollar cve day defacement explained exploit file first flaw include including infection issue jquery larry malicious malware many older other out packages plugin post reported researcher researcher discovered security several since thousands tracked upload versions vulnerability zero exfiltration |
Tags |
Malware
Vulnerability
|
Stories |
|
Notes |
|
Move |
|