Better Messages – Live Chat For WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss Security Vulnerabilities

CVE-2022-44587 WordPress WP 2FA plugin <= 2.6.3 - Sensitive Data Exposure via Log File vulnerability

Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP 2FA: from n/a through...

Keycloak leaks configured LDAP bind credentials through the Keycloak admin console

Impact The LDAP testing endpoint allows to change the Connection URL independently of and without having to re-enter the currently configured LDAP bind credentials. An attacker with admin access (permission manage-realm) can change the LDAP host URL ("Connection URL") to a machine they control....

CVE-2022-38055 WordPress wpForo Forum plugin <= 2.0.9 - Auth. HTML Injection vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in gVectors Team wpForo Forum allows Content Spoofing.This issue affects wpForo Forum: from n/a through...

Security Bulletin: Multiple PostgreSQL Vulnerabilities Affect IBM Storage Scale System

Summary There are vulnerabilities in PostgreSQL versions used by IBM Storage Scale System that could allow a remote authenticated attacker to obtain sensitive information or bypass security restrictions, a denial of service and a buffer overflow. IBM Storage Scale System has addressed the...

thamm-it.de Cross Site Scripting vulnerability OBB-3937463

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

GHSA-95PR-FXF5-86GV vulnerabilities

Vulnerabilities for packages: ko, slsa-verifier, kubescape, flux-source-controller, goreleaser, vexctl, spire-server, zot, melange, zarf, falcoctl, neuvector-sigstore-interface, apko, policy-controller, tekton-chains, skaffold, wolfictl, aactl, tkn, falco,...

CVE-2024-4368 vulnerabilities

Vulnerabilities for packages:...

GHSA-RHH4-RH7C-7R5V vulnerabilities

Vulnerabilities for packages: k9s, wolfictl, nuclei, kubescape, zarf,...

CVE-2024-3772 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-36129 vulnerabilities

Vulnerabilities for packages: opentelemetry-collector-contrib, opentelemetry-collector, tempo,...

CVE-2024-25710 vulnerabilities

Vulnerabilities for packages: neo4j, opensearch, gradle, spdx-tools-java, dependency-track, jenkins, wavefront-proxy,...

GHSA-4265-CCF5-PHJ5 vulnerabilities

Vulnerabilities for packages: neo4j, opensearch, gradle, spdx-tools-java, dependency-track, jenkins, wavefront-proxy,...

GHSA-GVPG-VGMX-XG6W vulnerabilities

Vulnerabilities for packages:...

GHSA-GR79-9V6V-GC9R vulnerabilities

Vulnerabilities for packages:...

CVE-2020-15136 vulnerabilities

Vulnerabilities for packages:...

GHSA-J86V-2VJR-FG8F vulnerabilities

Vulnerabilities for packages:...

GHSA-PM3M-32R3-7MFH vulnerabilities

Vulnerabilities for packages:...

GHSA-WR2V-9RPQ-C35Q vulnerabilities

Vulnerabilities for packages:...

GHSA-99PG-GRM5-QQ3V vulnerabilities

Vulnerabilities for packages:...

CVE-2021-41092 vulnerabilities

Vulnerabilities for packages:...

CVE-2021-22569 vulnerabilities

Vulnerabilities for packages: trino,...

CVE-2022-3171 vulnerabilities

Vulnerabilities for packages: trino,...

GHSA-77RM-9X9H-XJ3G vulnerabilities

Vulnerabilities for packages:...

GHSA-GP7F-RWCX-9369 vulnerabilities

Vulnerabilities for packages:...

CVE-2021-38561 vulnerabilities

Vulnerabilities for packages: hey, dynamic-localpv-provisioner, k3d, gitleaks,...

CVE-2021-43565 vulnerabilities

Vulnerabilities for packages: k3d,...

GHSA-VVPX-J8F3-3W6H vulnerabilities

Vulnerabilities for packages: wireguard-go, gke-gcloud-auth-plugin, go, dynamic-localpv-provisioner, hey, restic, k3d, falco,...

CVE-2023-24540 vulnerabilities

Vulnerabilities for packages: falco, go-fips,...

GHSA-888H-RM2R-VRC7 vulnerabilities

Vulnerabilities for packages: falco, policy-controller,...

GHSA-7QHM-5MXQ-X7VP vulnerabilities

Vulnerabilities for packages: falco, go-fips,...

GHSA-89MW-W342-MQRR vulnerabilities

Vulnerabilities for packages:...

GHSA-9F7G-GQWH-JPF5 vulnerabilities

Vulnerabilities for packages: falco, go-fips,...

GHSA-F8F7-69V5-W4VX vulnerabilities

Vulnerabilities for packages: falco, go,...

GHSA-V4M2-X4RP-HV22 vulnerabilities

Vulnerabilities for packages: falco, go-fips,...

GHSA-VQ7J-GX56-RXJH vulnerabilities

Vulnerabilities for packages: metrics-server, falco,...

CVE-2023-46407 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-4323 vulnerabilities

Vulnerabilities for packages:...

GHSA-HJ8R-56HG-7WG8 vulnerabilities

Vulnerabilities for packages:...

GHSA-798R-FXXX-HVXJ vulnerabilities

Vulnerabilities for packages:...

GHSA-V34C-9RWG-QPF6 vulnerabilities

Vulnerabilities for packages:...

CVE-2023-23946 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-32004 vulnerabilities

Vulnerabilities for packages:...

CVE-2020-26160 vulnerabilities

Vulnerabilities for packages:...

GHSA-2G67-JW5M-244M vulnerabilities

Vulnerabilities for packages:...

CVE-2023-25139 vulnerabilities

Vulnerabilities for packages:...

GHSA-JJR8-97P7-VMMG vulnerabilities

Vulnerabilities for packages:...

CVE-2024-2961 vulnerabilities

Vulnerabilities for packages:...

CVE-2024-33599 vulnerabilities

Vulnerabilities for packages:...

GHSA-9GVM-VCGF-X5XW vulnerabilities

Vulnerabilities for packages:...

GHSA-JV3G-6PG3-V9J8 vulnerabilities

Vulnerabilities for packages:...