- PRTG Core Server
XSS Cross-Site-Scripting
We fixed potential reflected XSS vulnerabilities with medium severity on the PRTG core server. The potential vulnerabilities affected tag filters, object IDs, and the contact support/feedback page. Please note that the fixed vulnerabilities required a logged in PRTG user account to be exploited. - Sensors
DoS
We fixed a potential Denial of Service (DoS) vulnerability of the HTTP Full Web Page sensor. Please note that the fixed vulnerability required a logged in PRTG user account with elevated rights to be exploited. (CVE-2019-11074)
Security fixes in PRTG 19.3.51/19.4.52
The current version PRTG 19.3.51/19.4.52 includes some security fixes:
Subscribe to:
Post Comments (Atom)
Phishing using @-URL trick in DNS .zip domains
With Googles release of the DNS top-level-domains .zip and .mov a new phishing (mitre att&ck T1566) trick is possible as bobbyrsec wr...
-
Howto add a route with a specific interface into the windows routing-table. This can be useful for example if you have a tunnel-all vpn...
-
Most Fortinet FortiAnalyzer reports use the full domain including subdomains, e.g. www.google.com or maps.google.com. If you want to group s...
-
When your nextcloud installation is showing an error like the following, then you could use " occ db:add-missing-indices " to repa...
No comments:
Post a Comment