1. Nachrichten >
  2. Contact Tracing: Apple und Google bessern nach Kritik bei ihren Schnittstellen nach

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese

Contact Tracing: Apple und Google bessern nach Kritik bei ihren Schnittstellen nach


Nachrichten vom | Direktlink: derstandard.at Nachrichten Bewertung

Interoperabilität zwischen mehreren Ländern soll erleichtert werden – Unter Android müssen künftig Standortdienste nicht mehr aktiviert sein
...

Externe Webseite mit kompletten Inhalt öffnen



https://www.derstandard.at/story/2000119111121/contact-tracing-apple-und-google-bessern-nach-kritik-bei-ihren?ref=rss

Team Security Social Media

➤ Weitere Beiträge von Team Security | IT Sicherheit

  • User input validation to avoid data manipulation

    vom 347.6 Punkte ic_school_black_18dp
    User input validation: Strictly compares to boolean _false_. This vulnerability affects the following application versions: Contact Form 7 3.6 Contact Form 7 3.7 Contact Form 7 3.7.1 Conta
  • Create_function() removed to avoid security risks

    vom 249.22 Punkte ic_school_black_18dp
    Avoid using create_function(). The create_function() has a security risk like eval() does, and PHP 7.2 will warn you if the function is used. This vulnerability affects the following application versions: Contact Form 7 3.5.3
  • Open Redirect Payload List

    vom 249.04 Punkte ic_school_black_18dp
    Unvalidated redirects and forwards are possible when a web application accepts untrusted input that could cause the web application to redirect the request to a URL contained within untrusted input. By modifying untrusted URL input to a malicious site, an attacker
  • Ignore local file attachment when the file is out of WP_CONTENT_DIR

    vom 242.66 Punkte ic_school_black_18dp
    Prior to this patch, it was possible to attach a local file to a contact form upload under certain circumstances, even if the file was outside of the /wp-content/ directory. This patch updates the upload capabilities so it no longer possible to attach a
  • Specifies the capability_type argument explicitly in the register_post_type() call

    vom 236.11 Punkte ic_school_black_18dp
    A privilege escalation vulnerability had been closed by explicitly specifying the 'capability_type' argument in the register_post_type() function call. This vulnerability affects the following application versions: Contact Form 7 3.9
  • Sanitize contact form titles

    vom 222.99 Punkte ic_school_black_18dp
    The title attribute of contact forms were not being thoroughly sanitized. Additional filtering measures have been implemented in this patch. This vulnerability affects the following application versions: Contact Form 7 3.6
  • Minecraft with RTX ray tracing is finally arriving in beta on April 16

    vom 206.24 Punkte ic_school_black_18dp
    Minecraft is going to look very different if you have an NVIDIA RTX-enabled video card. What you need to know Minecraft is picking up RTX ray tracing later this week. The first beta build is going live on April 16 via the Xbox Insider Hub, and will
  • Properly remove uploaded files with permissions issues on Windows / IIS servers

    vom 190.2 Punkte ic_school_black_18dp
    Due to the way some IIS-based servers check permissions on files and directories, it was possible for some uploaded files to not be removed properly under certain circumstances. This patch altered the way Contact Form 7 deletes uploaded files to account fo
  • Apple and Google Launch Digital Contact Tracing System

    vom 187.34 Punkte ic_school_black_18dp
    Apple and Google announced today that they have rolled out a COVID-19 exposure notification system, "essentially a unified programming interface that will allow public health departments to create their own contact tracing applications," reports ABC News.
  • HTML is not allowed in messages

    vom 177.08 Punkte ic_school_black_18dp
    In the messages tab in a contact form editor screen, messages could be created that Contact Form 7 displays in different situations. Allowing HTML in a message can be a security risk, and as such, only plain text is allowed. This patch forcibly strips al
  • More Than 7 In 10 Americans Won't Use Contact-Tracing Apps, Data Shows

    vom 159.33 Punkte ic_school_black_18dp
    An anonymous reader quotes a report from Ars Technica: Because of the lag between infection and the onset of symptoms, people can contract the SARS-CoV-2 virus and then pass it on, potentially to many others, before they know they're infected and have
  • Introduced wpcf7_build_query() to correctly apply urlencode to keys and values in URL queries

    vom 157.4 Punkte ic_school_black_18dp
    It was possible for certain key-value pairs found in URL queries to not be properly encoded. The introduction of the 'wpcf7_build_query()' function in this patch ensured that all key-value pairs would be properly URL encoded. This vulnerability affects t

Team Security Diskussion über Contact Tracing: Apple und Google bessern nach Kritik bei ihren Schnittstellen nach