WordPress WS Bootstrap plugin <= 1.0.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress WS Bootstrap plugin versions = 1.0.2. Solution No patched version available...

Security fix for the ALT Linux 10 package dotnet-bootstrap-5.0 version 5.0.14-alt1

5.0.14-alt1 built Feb. 21, 2022 Vitaly Lipatov in task 295271 Feb. 12, 2022 Vitaly Lipatov - .NET 5.0.14 - February 8, 2022 - CVE-2022-21986 : .NET Denial of Service Vulnerability - CVE-2021-43877 : ASP.NET Core Elevation of privilege Vulnerability - CVE-2021-41355 : .NET Core Information...

Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.22-alt1

3.1.22-alt1 built Feb. 21, 2022 Vitaly Lipatov in task 295271 Feb. 12, 2022 Vitaly Lipatov - .NET Core 3.1.22 - December 14, 2021 - CVE-2021-43877: ASP.NET Core Elevation of privilege Vulnerability - CVE-2021-34485: .NET Core Information Disclosure Vulnerability - CVE-2021-26423: .NET Core Denial...

OneBlog Cross-Site Scripting Vulnerability

OneBlog is a simple and beautiful , powerful and adaptive Java blog. The use of springboot development , front-end use Bootstrap. support for mobile adaptive , with a complete front-end and back-end management functions . OneBlog in version 2.2.8 before the existence of XSS vulnerability , the...

SB Admin Cross Site Request Forgery / SQL Injection

$$$$$$$\ $$ $$\ $$ | $$ |$$\ $$\ $$\ $$$$$$$\ $$$$$$\ $$$$$$$\ $$$$$$$ |$$ | $$ | $$ |$$ $$\ $$ $$\ $$ | $$ / $$ | $$ | $$ |$$ | $$ | $$$$$$$$ |$$ / $$ | $$ | $$ | $$ |$$ | $$ | $$ |$$ | $$ | $$$$$$$$$ |$$ | $$ |$$\$$$$$$$\ $$$$$$$\ | \/ | ||| | Offensive Security Community Ecuador...

SB Admin Cross Site Request Forgery / SQL Injection Vulnerabilities

Credits & Authors: ================== Taurus Omar - @TaurusOmar email protected taurusomar.com Document Title: =============== SB Admin Bootstrap CSRF / Sqli Vulnerability / Bypasss Login Access Severity Level: =============== High Google & Bing Dorks =================== intitle:SB Admin - login...

The vulnerability of the escapeHTML function in the Bootstrap Table software allows a perpetrator to compromise the confidentiality and integrity of the protected information.

The vulnerability of the escapeHTML function in the Bootstrap Table software lies in errors related to data type mixing. Exploiting this vulnerability can allow an attacker, operating remotely, to compromise the confidentiality and integrity of the protected information...

Malicious code in bootstrap-feature (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3db5e43a78e41f050b0e265c951bc776e693abd20a01108e6c8ea2e15a5e7c4d Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

fastadmin code problem vulnerability

fastadmin is a set of ThinkPHP and Bootstrap-based web backend development framework. fastadmin has a security vulnerability that stems from the fact that Fastadmin v1.2.1 is affected by a file upload vulnerability that allows execution of arbitrary code via shell access. No details of the...

The vulnerability of the h5-vcav-bootstrap-service software, a management software for virtual infrastructure of VMware vCenter Server, allows an attacker to read local files on the server where the vulnerable software is installed. It also enables the attacker to forge requests on the server side and perform XSS attacks.

The vulnerability of the h5-vcav-bootstrap-service plugin in the virtualization infrastructure management software is related to errors in processing relative pathnames to directories. Exploiting this vulnerability allows a malicious actor to read local files on the server where the vulnerable...

192.168.0.172 (=4.6.1), @attivio/suit (>=0.0.47 <=1.0.7) +76 more potentially affected by CVE-2021-23398 via react-bootstrap-table (>=1.6.2 <=4.3.1)

react-bootstrap-table NPM version =1.6.2, =0.0.47, =1.0.0, =0.3.1, =0.1.1, =1.21.0, =0.15.0-beta-1, =0.0.1, =1.14.3, =1.0.1, =1.0.70 and more Source cves: CVE-2021-23398 Source advisory: OSV:GHSA-2589-W6XF-983R...

GHSA-2589-W6XF-983R Cross-site scripting in react-bootstrap-table

All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting XSS via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output...

Cross-site scripting in react-bootstrap-table

All versions of package react-bootstrap-table are vulnerable to Cross-site Scripting XSS via the dataFormat parameter. The problem is triggered when an invalid React element is returned, leading to dangerouslySetInnerHTML being used, which does not sanitize the output...

F5 Networks BIG-IP : Bootstrap vulnerability (K19785240)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K19785240 advisory. - In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip. CVE-2018-14042 Note that Nessus has not...

F5 Networks BIG-IP : Bootstrap vulnerability (K48382137)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K48382137 advisory. - In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. CVE-2018-14040 Note that Nessus has not...

Apache ShenYu 授权问题漏洞

Apache ShenYu is an asynchronous, high-performance, cross-language, responsive API gateway from the Apache Foundation.An authorization issue vulnerability exists in Apache ShenYu Admin, which stems from a misuse of JWT in ShenuAdminBootstrap allowing an attacker to bypass authentication. No...

GHSA-5XP3-JFQ3-5Q8X vulnerabilities

Vulnerabilities for packages: pypy-bootstrap...

CVE-2021-3572 vulnerabilities

Vulnerabilities for packages: pypy-bootstrap...

dn-bootstrap-table-mobile (=1.0.0) potentially affected by CVE-2021-23472 via bootstrap-table (=1.11.1)

bootstrap-table NPM version =1.11.1 is affected by a known vulnerability. The following packages have a transitive dependency on bootstrap-table and may be impacted: - dn-bootstrap-table-mobile =1.0.0 Source cves: CVE-2021-23472 Source advisory: OSV:GHSA-MW6Q-98MP-G8G8...

Cross-site Scripting in bootstrap-table

This affects all versions of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an array instead of a string even if the escape attribute is set...