How CISOs Can Reframe The Conversation Around Security: 4 Steps
12/8/2015Security professionals often complain that people are the weak link in the data security system. But in reality, they could be your biggest asset and ally.
Post a Comment
Author
Profile of Jon Allen
Assistant VP & CISO, Baylor University News & Commentary Posts: 1Jon Allen is the assistant vice president and Chief Information Security Officer at Baylor University where he has built the information security group from a one-person shop to an integrated organization. Jon has more than ten years of experience in information and network security and is a member of the Educause Effective Practices committee, and the SANS EDU advisory council. He has presented at RSA, Educause, Treasury Institute PCI workshop, SEAT and IANS on topics ranging from PCI compliance to InfoSec in the age of Cloud and Agile IT.
Articles by Jon Allen
Security professionals often complain that people are the weak link in the data security system. But in reality, they could be your biggest asset and ally.
Post a Comment
White Papers
Video
4 Comments
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Genius! Only a Big Brother can control another.
Latest Comment: Genius! Only a Big Brother can control another.
Current Issue
Flash Poll
How Enterprises Are Attacking the Cybersecurity Problem
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.
Twitter Feed
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database CVE-2018-19433
PUBLISHED: 2018-11-22
PUBLISHED: 2018-11-22
PUBLISHED: 2018-11-22
PUBLISHED: 2018-11-22
PUBLISHED: 2018-11-22
From DHS/US-CERT's National Vulnerability Database CVE-2018-19433
PUBLISHED: 2018-11-22
ShowDoc 2.4.1 has XSS via the lang parameter because install/database.php mishandles the $cur_lang value.
CVE-2018-19434PUBLISHED: 2018-11-22
An issue was discovered on the "Bank Account Matching - Receipts" screen of the General Ledger component in webERP 4.15. BankMatching.php has Blind SQL injection via the AmtClear_ parameter.
CVE-2018-19435PUBLISHED: 2018-11-22
An issue was discovered in the Sales component in webERP 4.15. SalesInquiry.php has SQL Injection via the SortBy parameter.
CVE-2018-19436PUBLISHED: 2018-11-22
An issue was discovered in the Manufacturing component in webERP 4.15. CollectiveWorkOrderCost.php has Blind SQL Injection via the SearchParts parameter.
CVE-2018-19437PUBLISHED: 2018-11-22
UCMS 1.4.7 allows remote authenticated users to change the administrator password because $_COOKIE['admin_'.cookiehash] is used for arbitrary cookie values that are set and not empty.
- Terms of Service
- Privacy Statement
- Legal Entities
- Copyright © 2018 UBM, All rights reserved
Tweet This