Database Security

Authentication

Privacy

Compliance

Identity & Access Management

Security Monitoring

Advanced Threats

Insider Threats

Vulnerability Management

Network Computing Dark Reading

Advertise

About Us

LIVE EVENTS

There are no upcoming Dark Reading events at this time. Check out what UBM Tech events are coming up here.

ONLINE EVENTS

Check out these online events that are available from the comfort of your computer! View our complete list of Upcoming Webinars so you can attend a live session or our Webinar Archives for webinars that are available On-Demand!

Upcoming Online Events

12/06

Developing a Customized Defense Against Targeted Attacks

12/11

Using Security Champions to Build a DevSecOps Culture Within Your Organization

12/12

New Security Strategies for the Cloud Services Environment

Don't forget to view our complete list of Webinar Archives for webinars that are available On-Demand!

Hot Topics

Editors' Choice

Veterans Find New Roles in Enterprise Cybersecurity

Kelly Sheridan, Staff Editor, Dark Reading, 11/12/2018

Understanding Evil Twin AP Attacks and How to Prevent Them

Ryan Orsi, Director of Product Management for Wi-Fi at WatchGuard Technologies, 11/14/2018

7 Free (or Cheap) Ways to Increase Your Cybersecurity Knowledge

Curtis Franklin Jr., Senior Editor at Dark Reading, 11/15/2018

Live Events

Webinars

More UBM Tech
Live Events

Enterprise Connect 2019 - Build Your Comms & Collaboration Future

Communications & Collaboration 2022 at EC19 Orlando March 18-21

White Papers

4 Support Teams That Embraced Mobile

Shutting Down Banking Trojans

Design Secure Software from the First Line of Code

Picture This: Cyber Crime for Sale

Cyber Threats Are Surging Globally

More White Papers

Video

All Videos

Cartoon

Latest Comment: You know, at first glance, I liked the idea of wearable tech.. Never through it would be a security risk.

Cartoon Archive

Current Issue

10 Emerging Threats Every Enterprise Should Know About

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

Online Malware and Threats: A Profile of Today's Security Posture

This report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!

Download Now!

The Risk Management Struggle

0 comments

How Data Breaches Affect the Enterprise

0 comments

The State of IT and Cybersecurity

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading OR #DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2018-19327
PUBLISHED: 2018-11-17

An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php?type=action&action=add allows CSRF.

CVE-2018-19328
PUBLISHED: 2018-11-17

LAOBANCMS 2.0 allows install/mysql_hy.php?riqi=../ Directory Traversal.

CVE-2018-19329
PUBLISHED: 2018-11-17

GreenCMS v2.3.0603 allows remote authenticated administrators to delete arbitrary files by modifying a base64-encoded pathname in an m=admin&c=media&a=delfilehandle&id= call, related to the m=admin&c=media&a=restorefile delete button.

CVE-2018-19331
PUBLISHED: 2018-11-17

An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter.

CVE-2018-19332
PUBLISHED: 2018-11-17

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

Terms of Service
Privacy Statement
Legal Entities

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]