Bir süredir yoğun olarak girişimcilik üzerine mesai harcıyorum, tecrübeli kişilerle sohbet ediyor, yeni girişimleri gözlemliyorum. Yeni girişimler de ortak bir payda buldum, ortak payda faliyete geçme tarihi beklenenden hep daha geç olduğu… Bu konuda bir şeyler karalamak, arkamızdan gelen gençlere fikir vermek, ileri de geriye dönüp anı tazelemek için bu yazıyı yazıyorum. İlk işe girişler de sürekli …
Kategori: Girişimcilik
Category
RECENT VULNERABILITIES
- CVE-2022-43663An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.
- CVE-2022-45124An information disclosure vulnerability exists in the User authentication functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can sniff network traffic to leverage this vulnerability.
- CVE-2023-27578Galaxy is an open-source platform for data analysis. All supported versions of Galaxy are affected prior to 22.01, 22.05, and 23.0 are affected by an insufficient permission check. Unsupported versions are likely affected as far back as the functionality of Visualizations/Pages exists. Due to this issue, an attacker can modify or delete any Galaxy Visualization […]
- CVE-2023-28425Redis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and termination of the Redis server process. The problem is fixed in Redis version 7.0.10.
- CVE-2023-0681Rapid7 InsightVM versions 6.6.178 and lower suffers from an open redirect vulnerability, whereby an attacker has the ability to redirect the user to a site of the attacker’s choice using the ‘page’ parameter of the ‘data/console/redirect’ component of the application. This issue was resolved in the February, 2023 release of version 6.6.179.
- CVE-2023-27586CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service. Version 2.7.0 disables CairoSVG's ability […]
- CVE-2023-22288HTML Email Injection in Tribe29 Checkmk
- CVE-2023-1517Cross-site Scripting (XSS) - DOM in GitHub repository pimcore/pimcore prior to 10.5.19.
- CVE-2023-0631The Paid Memberships Pro WordPress plugin before 2.9.12 does not prevent subscribers from rendering shortcodes that concatenate attributes directly into an SQL query.
- CVE-2023-0630The Slimstat Analytics WordPress plugin before 4.9.3.3 does not prevent subscribers from rendering shortcodes that concatenates attributes directly into an SQL query.
Last Tweets
Sorry, no Tweets were found.
Recent Posts
- Nessus Truncated Packets Uyarısı
- Nessus Tarama Sorunu (Network Congestions, Truncated)
- Ubuntu Resolv.conf Dosyasının Reboot Sonrası Değişmesi Sorunu
- NMAP Tarama Sonucunda HTML Rapor Oluşturmak
- Kali İşletim Sistemine Komut Satırından Proxy Ekleme
- USOM Duyuru Faaliyetleri: Güvenlik Açıklıkları
- E-Ticarette Güven Damgası Dönemi ve Sızma Testi
- TestHive – Penetration Testing Talks
- Sızma Testi Bulguları İçin Reçete
- Kayhan Kayıhan – IETT siber saldırı röportajı
Followed By
Links
- Ağ Güvenliği
- Ask Ubuntu
- BGA Blog
- BH Leaks
- Bilgi Güvenliği
- Blackhat Scene
- CEH Türkiye
- Computer Security With Ethical Hacking
- Çözüm Park
- CVE
- Dark Reading
- DistroWatch
- Dünya Gerçeğim
- E-Hacking News
- Elite Hackers
- EnderUnix
- Hack a Day
- Hack PC Online
- Hack PC Online
- Hackers Online Club
- In Secure
- Indian Hack Word
- Infosec Institute
- Internet Hukuku
- Ipucu EnderUnix
- Learn Hacking
- Linux Akademi
- Log Yönetimi
- Lostar Blog
- Net Security
- Packet Storm Security
- Pardus
- Saint Andrew's Paradise
- Sec Savvy
- Secure List
- Security Focus
- Security Phresh
- Security Space
- Security Stack Exchange
- Security Stack Exchange
- Security Tube Training
- SecurityXploded
- The Hacker News
- Top Ten Reviews
- We Live Security
- White Hat Security