CVE-2023-1881 Cross-site Scripting (XSS) - Stored in microweber/microweber

Cross-site Scripting XSS - Stored in GitHub repository microweber/microweber prior to 1.3.3...

CVE-2023-1892

Cross-site Scripting XSS - Reflected in GitHub repository sidekiq/sidekiq prior to 7.0.8...

CVE-2023-1886

CVE-2023-1886 affects thorsten/phpMyFAQ prior to version 3.1.12. Authentication bypass by capture-replay is documented in multiple feeds (GitHub commit, GHSA advisory, OSV). The underlying issue allows bypassing login to perform actions such as posting comments, with CVSS 3.1 scores indicating hi...

CVE-2023-1887 Business Logic Errors in thorsten/phpmyfaq

Business Logic Errors in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1877 Command Injection in microweber/microweber

Command Injection in GitHub repository microweber/microweber prior to 1.3.3...

Debian dla-3383 : grunt - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3383 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3383-1 [email protected] https://www.debian.org/lts/security/...

Medium: vim

Issue Overview: A heap-based buffer overflow vulnerability was found in GitHub repository vim/vim prior to 9.0.1376 in Vim's utfptr2char function of the src/mbyte.c file. This flaw occurs because there is access to invalid memory with put in visual block mode. An attacker can trick a user into...

CVE-2023-1789

Improper Input Validation in GitHub repository firefly-iii/firefly-iii prior to 6.0.0...

CVE-2023-1789 Improper Input Validation in firefly-iii/firefly-iii

Improper Input Validation in GitHub repository firefly-iii/firefly-iii prior to 6.0.0...

CVE-2023-1761

Cross-site Scripting in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

Cross site scripting

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1755

Cross-site Scripting XSS - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

Input validation

Improper Neutralization of Input During Web Page Generation in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

Default credentials

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1762 Improper Privilege Management in thorsten/phpmyfaq

Improper Privilege Management in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1755 Cross-site Scripting (XSS) - Generic in thorsten/phpmyfaq

Cross-site Scripting XSS - Generic in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1754 Improper Neutralization of Input During Web Page Generation in thorsten/phpmyfaq

Improper Neutralization of Input During Web Page Generation in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1760 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12...

CVE-2023-1760

phpMyFAQ is affected by a Stored XSS in versions prior to 3.1.12. The vulnerability arises from improper handling of user input stored in the application (stored XSS). Public advisories (CVE-2023-1760) and multiple sources confirm the affected software is phpMyFAQ and that the fix is to upgrade t...

CVE-2023-1760 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq

Cross-site Scripting XSS - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.12...