Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
Name That Toon: End User Lockdown
Newest First  |  Oldest First  |  Threaded View
<<   <   Page 6 / 6
Ace2010
17%
83%
Ace2010,
User Rank: Strategist
5/11/2019 | 12:06:44 PM
Key to Success
I never realizes that the "key" to success was going to open a physical lock!
Ace2010
43%
57%
Ace2010,
User Rank: Strategist
5/11/2019 | 11:58:18 AM
MS
When we were told we were moving to a culture more like Microsoft, I thought it was going to be a good thing!
Tempest2004
0%
100%
Tempest2004,
User Rank: Strategist
5/10/2019 | 11:31:11 PM
End User Lockdown
I sent the screen lockout requirement to the Physical Security DL by mistake
corbincofer
0%
100%
corbincofer,
User Rank: Apprentice
5/10/2019 | 4:10:27 PM
Name That Toon: End User Lockdown
"Our company really takes SSO seriously!"
LeewardBear
33%
67%
LeewardBear,
User Rank: Strategist
5/10/2019 | 3:57:13 PM
May Cartoon
I've heard of "vendor lock-in", but this is ridiculous!
mbartel1418
25%
75%
mbartel1418,
User Rank: Strategist
5/10/2019 | 3:40:24 PM
Re: New Cartoon Caption Contest starts today!
I told you we needed to pass that cybersecurity training class.
mbartel1418
33%
67%
mbartel1418,
User Rank: Strategist
5/10/2019 | 3:39:09 PM
caption
I told you we needed to pass that cybersecurity training.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
5/10/2019 | 2:29:52 PM
New Cartoon Caption Contest starts today!
Enter and win a prize..
<<   <   Page 6 / 6


When It Comes To Security Tools, More Isn't More
Lamont Orange, Chief Information Security Officer at Netskope,  1/11/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-23836
PUBLISHED: 2021-01-15
An issue was discovered in flatCore before 2.0.0 build 139. A stored XSS vulnerability was identified in the prefs_smtp_psw HTTP request body parameter for the acp interface. An admin user can inject malicious client-side script into the affected parameter without any form of input sanitization. The...
CVE-2021-23837
PUBLISHED: 2021-01-15
An issue was discovered in flatCore before 2.0.0 build 139. A time-based blind SQL injection was identified in the selected_folder HTTP request body parameter for the acp interface. The affected parameter (which retrieves the file contents of the specified folder) was found to be accepting malicious...
CVE-2021-23838
PUBLISHED: 2021-01-15
An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the media_filter HTTP request body parameter for the acp interface. The affected parameter accepts malicious client-side script without proper input sanitization. For example, a malicious user...
CVE-2020-35581
PUBLISHED: 2021-01-15
A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/admin-ajax.php request with the meta[title] parameter.
CVE-2020-35582
PUBLISHED: 2021-01-15
A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/post.php request with the post_title parameter.