6574 matches found
CVE-2023-3012 NULL Pointer Dereference in gpac/gpac
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-3013
Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-3013
Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-3009
CVE-2023-3009 describes a stored XSS vulnerability in the TeamPass project nilsteampassnet/teampass, present in versions before 3.0.9. The issue allows injecting JavaScript via an item name stored in a shared folder, triggering code execution for other users with folder access. Connected sources ...
CVE-2023-2998 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-3013 Unchecked Return Value in gpac/gpac
Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-3021 Cross-site Scripting (XSS) - Stored in mkucej/i-librarian-free
Cross-site Scripting XSS - Stored in GitHub repository mkucej/i-librarian-free prior to 5.10.4...
CVE-2023-3009 Cross-site Scripting (XSS) - Stored in nilsteampassnet/teampass
Cross-site Scripting XSS - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9...
SUSE SLED15: libwireshark15 / libwiretap12 / libwsutil13 / wireshark / etc (SUSE-SU-2023:2320-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2320-1 advisory. Updated to version 3.6.14: - CVE-2023-2855: Fixed a crash in the Candump log file parser...
CVE-2023-2998
The CVE-2023-2998 entry concerns a Stored XSS in thorsten/phpMyFAQ before version 3.1.14. According to the documents, when admins create a FAQ News item, user-supplied content in the “text of the record” can inject scripts, leading to cross-site script execution. Affected component: phpMyFAQ’s ba...
CVE-2023-3012 NULL Pointer Dereference in gpac/gpac
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-2998 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.14...
CVE-2023-3013 Unchecked Return Value in gpac/gpac
Unchecked Return Value in GitHub repository gpac/gpac prior to 2.2.2...
CVE-2023-3021 Cross-site Scripting (XSS) - Stored in mkucej/i-librarian-free
Cross-site Scripting XSS - Stored in GitHub repository mkucej/i-librarian-free prior to 5.10.4...
CVE-2023-2984
Path Traversal: '..\filename' in GitHub repository pimcore/pimcore prior to 10.5.22...
Privilege escalation
Privilege Defined With Unsafe Actions in GitHub repository pimcore/pimcore prior to 10.5.23...
Path traversal
Path Traversal: '..\filename' in GitHub repository pimcore/pimcore prior to 10.5.22...
antfu/utils vulnerable to prototype pollution
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...
CVE-2023-2972
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...
Code injection
Prototype Pollution in GitHub repository antfu/utils prior to 0.7.3...