PT-2020-6066 · Unknown · Ua-Parser-Js

Name of the Vulnerable Software and Affected Versions: ua-parser-js versions prior to 0.7.23 Description: The issue is related to an uncontrolled resource consumption vulnerability in the ua-parser-js library, which can be exploited by a remote attacker to cause a denial of service. The...

Magmi (Magento Mass Importer) < 0.7.23 XSS Vulnerability

Magmi is prone to a cross-site scripting XSS vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

[SECURITY] Fedora 18 Update: python-djblets-0.7.23-1.fc18

A collection of useful classes and functions for Django...

[SECURITY] Fedora 20 Update: python-djblets-0.7.23-1.fc20

A collection of useful classes and functions for Django...

CVE-2010-5084

The cross-site request forgery CSRF protection mechanism in e107 before 0.7.23 uses a predictable random token based on the creation date of the administrator account, which allows remote attackers to hijack the authentication of administrators for requests that add new users via...

CVE-2010-4757

Cross-site scripting XSS vulnerability in submitnews.php in e107 before 0.7.23 allows remote attackers to inject arbitrary web script or HTML via the submitnewstitle parameter, a different vector than CVE-2008-6208. NOTE: some of these details are obtained from third party information. NOTE: this...