Security Links
XWiki is a generic wiki platform. In versions starting from 1.8 and prior to 15.10.16, 16.4.6, and 16.10.1, it is possible for a remote unauthenticated user to escape from the HQL execution context and perform a blind SQL injection to execute arbitrary SQL statements on the database backend, including when "Prevent unregistered users from viewing pages, regardless of the page rights" and "Prevent unregistered users from editing pages, regardless of the page rights" options are enabled. Depending on the used database backend, the attacker may be able to not only obtain confidential information such as password hashes from the database, but also execute UPDATE/INSERT/DELETE queries. This issue has been patched in versions 16.10.1, 16.4.6 and 15.10.16. There is no known workaround, other than upgrading XWiki.
#TRACK
SatelliteXplorer

Explore Active Satellite Orbiting Earth.

https://geoxc-apps.bd.esri.com/space/satellite-explorer/
RansomLook

RansomLook is an open-source project aimed at assisting users in tracking ransomware-related posts and activities across various sites, forums, and Telegram channels.

https://www.ransomlook.io/
WorldCam

Webcams from around the world.

https://worldcam.eu/
Ransomwatch

Ransomwatch trails the extortion sites used by ransomware groups and surfaces an aggregated feed of claims.

https://ransomwatch.telemetry.ltd/#/
World Webcams, Camera Search

Displays images from hundreds of webcams, cameras around the world, including a description of the web cam location. and Displays worldwide webcam images on the Google map.

https://world-webcams.nsspot.net/
OpenRailwayMap

An OpenStreetMap-based project for creating a map of the world's railway infrastructure.

https://www.openrailwaymap.org/
FlightAware

Live Flight Tracker

https://www.flightaware.com/live/
Windy Webcams

Webcam tracker from Windy.

https://www.windy.com/webcams
geOps Live Train Tracker

Worldwide live positions of trains, busses, trams and other public transport vehicles. Find out if your train is on time and see where it is located right now.

https://mobility.portal.geops.io/
ADS-B Exchange

Track aircraft live.

https://globe.adsbexchange.com/
SondeHub Amateur

This site displays telemetry from Amateur Radio high-altitude balloon launches, using the SondeHub-Amateur database.

https://amateur.sondehub.org/
OpenTrainTimes

Real-time track diagram.

https://www.opentraintimes.com/maps
Live From Iceland

Webcams around Iceland

https://www.livefromiceland.is/
AirNav RadarBox

Live Flight Tracker and Airport Status.

https://www.radarbox.com/
Ransomwhere

Ransomwhere is the open, crowdsourced ransomware payment tracker. Browse and download ransomware payment data or help build our dataset by reporting ransomware demands you have received.

https://ransomwhe.re/
EarthCam

Webcam Network

https://www.earthcam.com/
Satellite Map

Live view of SpaceX starlink satellite constellation and coverage.

https://satellitemap.space/
Airportia Flight Tracker

Live Flight Status Tracking at Airportia.

https://www.airportia.com/