6574 matches found
CVE-2023-5976
Improper Access Control in GitHub repository microweber/microweber prior to 2.0...
CVE-2023-5976
Improper Access Control in GitHub repository microweber/microweber prior to 2.0...
CVE-2023-5904
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site scripting
Cross-site Scripting in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Input validation
Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 2023.Q1.1223...
CVE-2023-5976
The CVE-2023-5976 entry concerns Microweber (microweber/microweber) prior to version 2.0.0 with an improper access control flaw. Multiple connected sources identify the root cause as insufficient restrictions that allow unauthorized actions (e.g., commenting on unpublished blog content). Context ...
CVE-2023-5976 Improper Access Control in microweber/microweber
Improper Access Control in GitHub repository microweber/microweber prior to 2.0...
Rocky Linux 8 : .NET Core 3.1 (RLSA-2022:6057)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:6057 advisory. - Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository eventsource/eventsource prior to v2.0.2. CVE-2022-1650 - .NE...
Fedora 39 : vim (2023-1c2c29a683)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-1c2c29a683 advisory. - patchlevel 1872 ---- The newest upstream commit Security fixes for CVE-2023-4733, CVE-2023-4752, CVE-2023-4750 Tenable has extracted the preceding...
Rocky Linux 9 : vim (RLSA-2022:5942)
The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:5942 advisory. - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977. CVE-2022-1785 - Out-of-bounds Write in GitHub repository vim/vim prior to 8.2...
Rocky Linux 8 : vim (RLSA-2022:1552)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:1552 advisory. - Use after free in utfptr2char in GitHub repository vim/vim prior to 8.2.4646. CVE-2022-1154 Note that Nessus has not tested for this issue but has instead reli...
CVE-2023-5948 Improper Authorization in teamamaze/amazefileutilities
Improper Authorization in GitHub repository teamamaze/amazefileutilities prior to 1.91...
FreeBSD : phpmyfaq -- multiple vulnerabilities (4f370c80-79ce-11ee-be8e-589cfc0f81b0)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 4f370c80-79ce-11ee-be8e-589cfc0f81b0 advisory. - Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.2...
CVE-2023-5898
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5899
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5892
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5897
Cross-Site Request Forgery CSRF in GitHub repository pkp/customLocale prior to 1.2.0-1...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.4.0-4...