all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Papercut Print Manager Flaw Let Attackers Perform Sophisticated Attacks

Add to bookmarks
Sept. 21, 2023, 4:01 p.m. | Guru

Cyber Security News cybersecuritynews.com

The PaperCutNG Mobility Print 1.0.3512 application has been identified to have a cross-site request forgery vulnerability that leads to sophisticated phishing attacks. This vulnerability exists because the application lacks CSRF defenses such as anti-CSRF tokens, header origin validation, same-site cookies, etc. The Cross-Site Request Forgery (CSRF) attack pushes authenticated users to send requests to Web applications […]


The post Papercut Print Manager Flaw Let Attackers Perform Sophisticated Attacks appeared first on Cyber Security News.

anti-csrf tokens application attack attackers attacks cookies cross-site cross-site request forgery csrf cyber security etc flaw forgery header manager mobility origin papercut phishing phishing attacks print request same-site tokens validation vulnerability

Visit resource

More from cybersecuritynews.com / Cyber Security News

Cactus Ransomware Exploiting Qlik Servers Vulnerability 1 day, 17 hours ago | cybersecuritynews.com
cactus cactus ransomware code code execution +28
Hackers Abuse Autodesk Drive For Hosting Weaponized PDF Files 1 day, 17 hours ago | cybersecuritynews.com
abuse attack autodesk campaign +19
MuddyWater Hackers Abusing Legitimate RMM Tool to Deliver Malware 1 day, 20 hours ago | cybersecuritynews.com
abusing actor agent atera +26
Hackers Actively Exploiting WP Automatic Updates Plugin Vulnerability 1 day, 21 hours ago | cybersecuritynews.com
attack automatic can compromise +27
Microsoft Releases Historical MS-DOS 4.0 Source Code to the Public 1 day, 21 hours ago | cybersecuritynews.com
accessibility code decision developers +12
PoC Exploit Released For Critical Flowmon Vulnerability 1 day, 21 hours ago | cybersecuritynews.com
analysis a network command command injection +26
Chrome Critical Flaw Let Attackers Execute Arbitary Code : Patch Now 1 day, 22 hours ago | cybersecuritynews.com
arbitrary code attackers browservulnerability channel +21
Hackers Exploit Google Ads to Spread IP Scanner with Concealed Backdoor 2 days, 9 hours ago | cybersecuritynews.com
ads attacker backdoor campaign +23
PlugX USB worm Infected Over 2.5M Devices 2 days, 15 hours ago | cybersecuritynews.com
cyber security cybersecurity devices fame +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Application Security Engineer - Enterprise Engineering

@ Meta | Bellevue, WA | Seattle, WA | New York City | Fremont, CA
View on infosec-jobs.com

Security Engineer

@ Retool | San Francisco, CA
View on infosec-jobs.com

Senior Product Security Analyst

@ Boeing | USA - Seattle, WA
View on infosec-jobs.com

Junior Governance, Risk and Compliance (GRC) and Operations Support Analyst

@ McKenzie Intelligence Services | United Kingdom - Remote
View on infosec-jobs.com

GRC Integrity Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com
View more jobs