CLSA-2026-1779212122 sos: Fix of CVE-2022-2806

CVE-2022-2806: ovirt plugin: filter out all password keys in answer files...

CVE-2023-45806

Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, if a user has been quoted and uses a | in their full name, they might be able to trigger a bug that generates a lot of duplicat...

CVE-2025-10059

Summary: A vulnerability in MongoDB where an improper setting of the lsid field on a sharded query can crash MongoDB routers. Root cause: mis-handling of a generic argument (lsid) when not applicable. Affected versions: MongoDB Server 6.0.x before 6.0.24; 7.0.x before 7.0.18; 8.0.x before 8.0.6. ...

PT-2025-36329

Name of the Vulnerable Software and Affected Versions MongoDB Server versions prior to 6.0.x MongoDB Server versions prior to 7.0.18 MongoDB Server versions prior to 8.0.6 Description An improper setting of the lsid field on any sharded query can cause a crash in MongoDB routers. This issue occur...

MongoDB Server 安全漏洞

MongoDB Server is a set of open source NoSQL databases from the American company MongoDB. The database provides collection-oriented storage, dynamic querying, data replication and automatic failover. A security vulnerability exists in MongoDB Server versions prior to v6.0.x, prior to v7.0.18, and...

WordPress Newsletter plugin <= 8.0.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Newsletter versions = 8.0.6...

CVE-2022-48069

creationtimestamp| type| source ---|---|--- 2023-01-27 18:34:28+00:00| seen| https://t.me/cibsecurity/57045...

CVE-2022-30571

The iWay Service Manager Console component of TIBCO Software Inc.'s TIBCO iWay Service Manager contains easily exploitable Reflected Cross Site Scripting XSS vulnerabilities that allow a low privileged attacker with network access to execute scripts targeting the affected system or the victim's...

TIBCO Software iWay Service Manager 路径遍历漏洞

TIBCO Software iWay Service Manager is a highly scalable enterprise service bus from TIBCO Software with a fully integrated service design-time environment and Web services for application and container creation and deployment capabilities. A path traversal vulnerability exists in TIBCO Software...

CVE-2021-22806

creationtimestamp| type| source ---|---|--- 2022-02-11 20:28:47+00:00| seen| https://t.me/cibsecurity/37305...

Apache Traffic Server Resource Management Error Vulnerability

Apache Traffic Server ATS is the United States Apache Apache Software Foundation's set of scalable HTTP proxy and caching server. A security vulnerability exists in Apache ATS versions 6.0.0 through 6.2.3, 7.0.0 through 7.1.9, and 8.0.0 through 8.0.6. An attacker could exploit the vulnerability t...