6574 matches found
Updated vim packages fix security vulnerabilities
The updated packages fix security vulnerabilities: NULL Pointer Dereference in GitHub repository vim/vim prior to 20d161ace307e28690229b68584f2d84556f8960. CVE-2023-5441 Use After Free in GitHub repository vim/vim prior to v9.0.2010. CVE-2023-5535...
CVE-2018-8024
creationtimestamp| type| source ---|---|--- 2023-10-25 07:52:21+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/19 2025-06-05 09:43:18+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2018/CVE-2018-8024.yaml...
Medium: vim
Issue Overview: Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969. CVE-2023-5344 Affected Packages: vim Issue Correction: Run dnf update vim --releasever 2023.2.20231018 or dnf update --advisory ALAS2023-2023-378 --releasever 2023.2.20231018 to update your system. More...
CVE-2023-5687
Cross-Site Request Forgery CSRF in GitHub repository mosparo/mosparo prior to 1.0.3...
Cross site scripting
Cross-site Scripting XSS - DOM in GitHub repository modoboa/modoboa prior to 2.2.2...
Cross site scripting
Cross-site Scripting XSS - DOM in GitHub repository modoboa/modoboa prior to 2.2.2...
CVE-2023-5690 Cross-Site Request Forgery (CSRF) in modoboa/modoboa
Cross-Site Request Forgery CSRF in GitHub repository modoboa/modoboa prior to 2.2.2...
CVE-2023-5689 Cross-site Scripting (XSS) - DOM in modoboa/modoboa
Cross-site Scripting XSS - DOM in GitHub repository modoboa/modoboa prior to 2.2.2...
CVE-2023-5689 Cross-site Scripting (XSS) - DOM in modoboa/modoboa
Cross-site Scripting XSS - DOM in GitHub repository modoboa/modoboa prior to 2.2.2...
CVE-2023-5688
CVE-2023-5688 affects modoboa/modoboa prior to 2.2.2 and is described as a DOM-based Cross-site Scripting (XSS) vulnerability. The vulnerability is triggered through the browser environment, allowing an attacker to execute malicious scripts in a user’s session. Public references confirm the issue...
CVE-2023-5688 Cross-site Scripting (XSS) - DOM in modoboa/modoboa
Cross-site Scripting XSS - DOM in GitHub repository modoboa/modoboa prior to 2.2.2...
CVE-2023-5687 Cross-Site Request Forgery (CSRF) in mosparo/mosparo
Cross-Site Request Forgery CSRF in GitHub repository mosparo/mosparo prior to 1.0.3...
CVE-2023-5687 Cross-Site Request Forgery (CSRF) in mosparo/mosparo
Cross-Site Request Forgery CSRF in GitHub repository mosparo/mosparo prior to 1.0.3...
CVE-2023-5686 Heap-based Buffer Overflow in radareorg/radare2
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0...
CVE-2023-5686
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0...
Amazon Linux 2 : vim (ALAS-2023-2288)
It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2288 advisory. Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969. CVE-2023-5344 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that...
CVE-2023-5626 Cross-Site Request Forgery (CSRF) in pkp/ojs
Cross-Site Request Forgery CSRF in GitHub repository pkp/ojs prior to 3.3.0-16...
Discord: A Playground for Nation-State Hackers Targeting Critical Infrastructure
In what's the latest evolution of threat actors abusing legitimate infrastructure for nefarious ends, new findings show that nation-state hacking groups have entered the fray in leveraging the social platform for targeting critical infrastructure. Discord, in recent years, has become a lucrative...
UBUNTU-CVE-2023-5595
Denial of Service in GitHub repository gpac/gpac prior to 2.3.0-DEV...
CVE-2023-5595
Denial of Service in GitHub repository gpac/gpac prior to 2.3.0-DEV...