6574 matches found
CVE-2023-3574
CVE-2023-3574 : The issue affects pimcore/customer-data-framework prior to 3.4.1, where improper authorization checks allow an unauthorized actor to access resources or perform actions. The Red Hat/Veracode/GHSA entries corroborate the same vulnerability description. A patch is available: upgrade...
CVE-2023-3568 Open Redirect in alextselegidis/easyappointments
Open Redirect in GitHub repository alextselegidis/easyappointments prior to 1.5.0...
CVE-2023-3565 Cross-site Scripting (XSS) - Generic in nilsteampassnet/teampass
Cross-site Scripting XSS - Generic in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
GHSA-97HM-2MFR-2P97 TeamPass Code Injection vulnerability
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
TeamPass Code Injection vulnerability
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3553
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3551
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
Code injection
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3553 Exposure of Sensitive Information to an Unauthorized Actor in nilsteampassnet/teampass
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3552 Improper Encoding or Escaping of Output in nilsteampassnet/teampass
Improper Encoding or Escaping of Output in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3552
The CVE-2023-3552 entry concerns TeamPass (nilsteampassnet/teampass) prior to version 3.0.10, where improper encoding or escaping of output enables cross-site scripting in folder names. The root cause is insufficient encoding/escaping of outputs, allowing injection of malicious content into the i...
CVE-2023-3551 Code Injection in nilsteampassnet/teampass
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3551 Code Injection in nilsteampassnet/teampass
Code Injection in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
CVE-2023-3532 Cross-site Scripting (XSS) - Stored in outline/outline
Cross-site Scripting XSS - Stored in GitHub repository outline/outline prior to 0.70.1...
TeamPass Cross-site Scripting vulnerability
Cross-site Scripting XSS - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
GHSA-PWRW-G29Q-3MP8 TeamPass Cross-site Scripting vulnerability
Cross-site Scripting XSS - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.10...
Apache InLong has Weak Password Requirements in Apache InLong
Weak Password Requirements vulnerability in Apache Software Foundation Apache InLong. This issue affects Apache InLong from 1.1.0 through 1.6.0. When users change their password to a simple password with any character or symbol, attackers can easily guess the user's password and access the accoun...
CVE-2023-3523
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2...
Design/Logic Flaw
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-3523 Out-of-bounds Read in gpac/gpac
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2...