Lucene search
K

860 matches found

Spring Security Advisories
Spring Security Advisories
added 2023/01/31 12:0 a.m.15 views

This Week in Spring - January 31st, 2023

Hi, Spring fans! Welcome to another installment of This Week in Spring! I'm not going to spend too much time here in the preamble because a today's both my birthday and my late father's birthday and b I got the worst gift ever: COVID-19. Sigh. So, I'm going back to bed. Without further ado, let's...

Exploits0
GithubExploit
GithubExploit
added 2023/01/03 9:49 a.m.282 views

Exploit for Cross-Site Request Forgery (CSRF) in Filebrowser

CVE-2021-46398 - Lalie ARNOUD, Gaspard ANDRIEU In this reposi...

8.8CVSS9.3AI score0.06663EPSS
Exploits6
Jake Archibald's Blog
Jake Archibald's Blog
added 2022/07/11 1:0 a.m.8 views

Avoiding <img> layout shifts: aspect-ratio vs width & height attributes

By default, an takes up zero space until the browser loads enough of the image to know its dimensions: &origin=source&to=/c/senna-d1c8a036.jpg When you run the demo, you'll see the immediately. Then, after a few seconds, this paragraph and subsequent page content shifts downwards to make room for...

6.9AI score
Exploits0
Jake Archibald's Blog
Jake Archibald's Blog
added 2022/07/11 1:0 a.m.25 views

Avoiding <img /> layout shifts: aspect-ratio vs width & height attributes

By default, an takes up zero space until the browser loads enough of the image to know its dimensions: &origin=source&to=/c/senna-d1c8a036.jpg When you run the demo, you'll see the immediately. Then, after a few seconds, this paragraph and subsequent page content shifts downwards to make room for...

6.9AI score
Exploits0
Akamai Blog
Akamai Blog
added 2022/03/15 1:0 p.m.19 views

Akamai Is a Leader in Forrester New Wave: Microsegmentation

We are excited to be named a Leader in The Forrester New Wave™: Microsegmentation, Q1 2022. We were evaluated alongside eight other vendors in the microsegmentation space and ranked in 10 criteria, including product vision, interface and reporting, host agents, agentless aspect, product, and...

7AI score
Exploits0
ICS
ICS
added 2022/03/15 12:0 p.m.46 views

American Auto-Matrix Front-End Solutions Vulnerabilities

OVERVIEW Independent researcher Maxim Rupp has identified a local file inclusion and a plain text storage of password vulnerabilities in American Auto-Matrix’s Building Automation Front-End Solutions application. The Aspect-Matrix hardware platform was made end of life in 2015 and will no longer...

8.6CVSS8.7AI score0.01491EPSS
Exploits0References18
vulnersOsv
vulnersOsv
added 2021/11/10 7:31 p.m.9 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +60 more potentially affected by CVE-2021-41200 via tensorflow (>=2.5.0 <=2.5.1)

tensorflow PYPI version =2.5.0, =0.21.2, =0.0.1, =1.1.0, =0.1.6, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.8.0 and more Source cves: CVE-2021-41200 Source advisory: OSV:GHSA-GH8H-7J2J-QV4F...

5.5CVSS6AI score0.0023EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/11/05 11:15 p.m.6 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +60 more potentially affected by CVE-2021-41221 via tensorflow (>=2.5.0 <=2.5.1)

tensorflow PYPI version =2.5.0, =0.21.2, =0.0.1, =1.1.0, =0.1.6, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.8.0 and more Source cves: CVE-2021-41221 Source advisory: OSV:PYSEC-2021-413...

7.8CVSS7AI score0.00214EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/11/05 10:15 p.m.9 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +60 more potentially affected by CVE-2021-41209 via tensorflow (>=2.5.0 <=2.5.1)

tensorflow PYPI version =2.5.0, =0.21.2, =0.0.1, =1.1.0, =0.1.6, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.8.0 and more Source cves: CVE-2021-41209 Source advisory: OSV:PYSEC-2021-401...

5.5CVSS6AI score0.00136EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/11/05 8:15 p.m.6 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +60 more potentially affected by CVE-2021-41197 via tensorflow (>=2.5.0 <=2.5.1)

tensorflow PYPI version =2.5.0, =0.21.2, =0.0.1, =1.1.0, =0.1.6, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.8.0 and more Source cves: CVE-2021-41197 Source advisory: OSV:PYSEC-2021-390...

5.5CVSS6AI score0.00307EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/08/25 2:44 p.m.7 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +52 more potentially affected by CVE-2021-37637 via tensorflow (=2.5.0)

tensorflow PYPI version =2.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - alphapulldown =0.21.2, =0.0.1, =1.1.0, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.7.0, =1.4.0 - fancyimpute =0.6.0 and more Source...

7.7CVSS5.8AI score0.0016EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/08/25 2:42 p.m.6 views

alphapulldown (>=0.21.2 <=0.22.3), analytics-lib (>=0.0.1 <=0.0.2) +52 more potentially affected by CVE-2021-37668 via tensorflow (=2.5.0)

tensorflow PYPI version =2.5.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - alphapulldown =0.21.2, =0.0.1, =1.1.0, =0.8.1, =3.3.0, =0.0.24, =1.0.0, =2.0.2, =0.6.0, =0.7.0, =1.4.0 - fancyimpute =0.6.0 and more Source...

5.5CVSS5.8AI score0.00154EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2021/05/21 2:28 p.m.7 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +88 more potentially affected by CVE-2021-29612 via tensorflow (>=2.2.0 <=2.2.2)

tensorflow PYPI version =2.2.0, =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2021-29612 Source advisory: OSV:GHSA-2XGJ-XHGF-GGJV...

7.8CVSS7AI score0.00287EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/21 2:28 p.m.4 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +88 more potentially affected by CVE-2021-29599 via tensorflow (>=2.2.0 <=2.2.2)

tensorflow PYPI version =2.2.0, =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2021-29599 Source advisory: OSV:GHSA-97WF-P777-86JQ...

7.8CVSS7AI score0.00209EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/21 2:26 p.m.3 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +88 more potentially affected by CVE-2021-29592 via tensorflow (>=2.2.0 <=2.2.2)

tensorflow PYPI version =2.2.0, =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2021-29592 Source advisory: OSV:GHSA-JJR8-M8G8-P6WV...

7.8CVSS7AI score0.00215EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/21 2:23 p.m.8 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +88 more potentially affected by CVE-2021-29543 via tensorflow (>=2.2.0 <=2.2.2)

tensorflow PYPI version =2.2.0, =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2021-29543 Source advisory: OSV:GHSA-FPHQ-GW9M-GHRV...

5.5CVSS6AI score0.00189EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2021/05/14 8:15 p.m.4 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +88 more potentially affected by CVE-2021-29582 via tensorflow (>=2.2.0 <=2.2.2)

tensorflow PYPI version =2.2.0, =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2021-29582 Source advisory: OSV:PYSEC-2021-219...

7.1CVSS7AI score0.00198EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2020/09/29 12:0 a.m.4 views

The vulnerability of the spring-aop component of the Jackson-databind library in the FasterXML project allows a hacker to execute arbitrary code.

The vulnerability of the spring-aop component of the Jackson-databind library in the FasterXML project is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code on the target system...

10CVSS8.1AI score0.03607EPSS
Exploits0References9Affected Software34
vulnersOsv
vulnersOsv
added 2020/09/25 6:28 p.m.4 views

accuinsight (>=1.0.47 <=1.0.61), alphad3m (>=0.10.0 <=0.10.0.dev1) +82 more potentially affected by CVE-2020-15214 via tensorflow (=2.2.0)

tensorflow PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow and may be impacted: - accuinsight =1.0.47, =0.10.0, =0.5.0, =0.2.0, =0.0.6, =1.2.0, =1.0.0, =0.0.15, =0.0.16 and more Source cves: CVE-2020-15214 Source advisory...

8.1CVSS7.2AI score0.00556EPSS
Exploits1
Openbugbounty
Openbugbounty
added 2020/06/28 12:36 p.m.18 views

aspect-property.com Cross Site Scripting vulnerability OBB-1209719

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Rows per page
Query Builder