Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Write A Caption & Win A Prize
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 11 / 14   >   >>
BrunoR250
0%
100%
BrunoR250,
User Rank: Apprentice
2/16/2016 | 5:39:06 PM
Re: Cartoon Caption
''Now that we reset passwords quarterly, we're going to be much safer!''

''Uh... you do know we only require them to be 8 characters?''

''I use my facebook password for everything!''

 
Dunkey
0%
100%
Dunkey,
User Rank: Apprentice
2/16/2016 | 5:32:42 PM
Cartoon Caption
...then John from Desktop told me I shouldn't have given out my password over the phone. But I don't think anything will come of it.
skellator
0%
100%
skellator,
User Rank: Apprentice
2/16/2016 | 4:43:18 PM
Cartoon Caption
Just "Plane" Stupid
UnmoG
50%
50%
UnmoG,
User Rank: Apprentice
2/16/2016 | 3:17:13 PM
He just wants to help
When your buddy works for the NSA...
mjsanders
60%
40%
mjsanders,
User Rank: Apprentice
2/16/2016 | 1:14:13 PM
Cartoon Caption
"Bill, I've always wondered.... how do you I.T. guys keep track of your passwords?"
skellator
25%
75%
skellator,
User Rank: Apprentice
2/16/2016 | 11:56:10 AM
Cartoon Caption
"Tower This Is GhostRider Requesting a Flyby"

"Negative Ghostrider, The Pattern Is Full"
phipster
33%
67%
phipster,
User Rank: Apprentice
2/16/2016 | 11:41:56 AM
Cartoon Caption
"You should include at least one special character"
Thomas Smith
25%
75%
Thomas Smith,
User Rank: Strategist
2/16/2016 | 11:16:18 AM
Cartoon Caption
"There has to be a cheaper way to get your OTP."
DGB2063
50%
50%
DGB2063,
User Rank: Apprentice
2/16/2016 | 10:40:42 AM
caption
"you couldn't just put a sticky note under the keyboard like everyone else"?
dbrisco863
0%
100%
dbrisco863,
User Rank: Apprentice
2/16/2016 | 10:09:48 AM
Cartoon Caption
You know, there is an app for that.
<<   <   Page 11 / 14   >   >>


When It Comes To Security Tools, More Isn't More
Lamont Orange, Chief Information Security Officer at Netskope,  1/11/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23836
PUBLISHED: 2021-01-15
An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefs_smtp_psw HTTP request body parameter for the acp interface. An admin user can inject malicious client-side script into the affected parameter without any form of input sanitization. The...
CVE-2021-23837
PUBLISHED: 2021-01-15
An issue was discovered in flatCore before 2.0.0 build 139. A time-based blind SQL injection was identified in the selected_folder HTTP request body parameter for the acp interface. The affected parameter (which retrieves the file contents of the specified folder) was found to be accepting malicious...
CVE-2021-23838
PUBLISHED: 2021-01-15
An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the media_filter HTTP request body parameter for the acp interface. The affected parameter accepts malicious client-side script without proper input sanitization. For example, a malicious user...
CVE-2020-35581
PUBLISHED: 2021-01-15
A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/admin-ajax.php request with the meta[title] parameter.
CVE-2020-35582
PUBLISHED: 2021-01-15
A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/post.php request with the post_title parameter.