Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2023-0519PUBLISHED: 2023-01-26Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.
CVE-2023-0493PUBLISHED: 2023-01-26Improper Neutralization of Equivalent Special Elements in GitHub repository btcpayserver/btcpayserver prior to 1.7.5.
CVE-2022-46967PUBLISHED: 2023-01-26An access control issue in Revenue Collection System v1.0 allows unauthenticated attackers to view the contents of /admin/DBbackup/ directory.
CVE-2022-46966PUBLISHED: 2023-01-26Revenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php.
CVE-2023-0455PUBLISHED: 2023-01-26Unrestricted Upload of File with Dangerous Type in GitHub repository unilogies/bumsys prior to v1.0.3-beta.
User Rank: Strategist
2/6/2014 | 8:01:06 AM
I hope you are right about this @smholloway. And agreed, that if TFA or MFA can substantially reduce damage from hacked PII after the breach that will be a big deal. (Not nitpick at all.)