Database Security

Authentication

Privacy

Compliance

Careers & People

Identity & Access Management

Threat Intelligence

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

Advertise With Us

About Us

Digital Subscription

Author

Profile of William Jackson

Technology Writer

News & Commentary Posts: 1

William Jackson is a technology writer based in Washington, D.C. He has been a journalist for more than 35 years, most recently covering the $80 billion federal government IT sector for Government Computer News. His coverage has ranged from architecture to international trade, but for the last 20 years he has focused on telecommunications, networking, and cyber-security in the public sector. He has received numerous journalism and industry awards and has spoken on radio and television about trends in government acquisition and the use of information technology as well as the challenges presented by cyber-security threats.

Articles by William Jackson

View Content By Month

Feds Launch Cyber Security Guidelines For U.S. Infrastructure Providers

2/12/2014
The White House on Wednesday released the first version of its cyber security framework for protecting critical infrastructure. Critics say these voluntary guidelines enshrine the status quo
Post a Comment

Content by Month
February 2014 - 1
[close this box]

Live Events

Webinars

More UBM Tech
Live Events

Plan and Deploy a Most Cost-Effective 4G Infrastructure

Join the Conference for 4G/LTE Professionals at CTIA

Tower & Small Cell Summit

White Papers

Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk

5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain

Intelligent Compliance White Paper

Creating the Best-of-Breed DDI Solution in a Microsoft Environment

Preventing Data Center Downtime

More White Papers

Flash Poll

All Polls

Current Issue

Dark Reading Must Reads July 15, 2014

Download This Issue!

Subscribe Now!

Back Issues | Must Reads

Cartoon

Latest Comment: This actually applies to a lot of things in security, so it's a wise joke well-taken.

Cartoon Archive

Reports

Infographics

DevOps’ Impact on Application Security

Managing the interdependency between software and infrastructure is a thorny challenge. Often, it’s a “developers are from Mars, systems engineers are from Venus” situation.

Download Now!

More Reports

Slideshows

Ransomware: 5 Threats To Watch

3 comments | Read | Post a Comment

6 Things That Stink About SSL

Hacker Movies We Love & Hate

More Slideshows

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2014-4734

Published: 2014-07-21
Cross-site scripting (XSS) vulnerability in e107_admin/db.php in e107 2.0 alpha2 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.

CVE-2014-4960

Published: 2014-07-21
Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) listid or (2) themeid parameter to index.php.

CVE-2014-5016

Published: 2014-07-21
Multiple cross-site scripting (XSS) vulnerabilities in LimeSurvey 2.05+ Build 140618 allow remote attackers to inject arbitrary web script or HTML via (1) the pid attribute to the getAttribute_json function to application/controllers/admin/participantsaction.php in CPDB, (2) the sa parameter to appl...

CVE-2014-5017

Published: 2014-07-21
SQL injection vulnerability in CPDB in application/controllers/admin/participantsaction.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to execute arbitrary SQL commands via the sidx parameter in a JSON request to admin/participants/sa/getParticipants_json, related to a search parameter...

CVE-2014-5018

Published: 2014-07-21
Incomplete blacklist vulnerability in the autoEscape function in common_helper.php in LimeSurvey 2.05+ Build 140618 allows remote attackers to conduct cross-site scripting (XSS) attacks via the GBK charset in the loadname parameter to index.php, related to the survey resume.

Best of the Web

Secondhand Point-o-Sale Terminal Was Horrific Security Midden

US Government Conducts Largest Cyber-Defense Exercise To Protect Critical Infrastructure

A Tough Corporate Job Asks One Question: Can You Hack It?

A Conversation With Edward Snowden

WSJ's Facebook Page Hacked With Fake Air Force One News

Dark Reading Radio

Archived Dark Reading Radio

Cyber Security’s Hottest Startups – And How They Get That Way

Where do information security startups come from? More important, how can I tell a good one from a flash in the pan? Learn how to separate ITSec wheat from chaff in this episode.

FULL SCHEDULE | ARCHIVED SHOWS

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]