CVE-2024-21411

Skype for Consumer Remote Code Execution Vulnerability...

Path Traversal

react-native-document-picker is vulnerable to a Path Traversal. The vulnerability is due to improper input validation, allowing a local attacker to execute arbitrary code. The attacker can exploit this by crafting a malicious script and executing it via the Android library component...

Directory traversal

Directory Traversal vulnerability in React Native Document Picker before v.9.1.1 and fixed in v.9.1.1 allows a local attacker to execute arbitrary code via a crafted script to the Android library component...

CVE-2024-25466

Directory Traversal vulnerability in React Native Document Picker before v.9.1.1 and fixed in v.9.1.1 allows a local attacker to execute arbitrary code via a crafted script to the Android library component...

CVE-2024-25466

Directory Traversal vulnerability in React Native Document Picker before v.9.1.1 and fixed in v.9.1.1 allows a local attacker to execute arbitrary code via a crafted script to the Android library component...

CVE-2024-21378

Microsoft Outlook Remote Code Execution Vulnerability...

CVE-2024-20691

Windows Themes Information Disclosure Vulnerability...

CVE-2024-20661

Microsoft Message Queuing MSMQ Denial of Service Vulnerability...

CVE-2023-40656

A reflected XSS vulnerability was discovered in the Quickform component for Joomla...

AZL-34678 CVE-2023-49993 affecting package espeak-ng for versions less than 1.52.0-1

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

CVE-2023-34002

Cross-Site Request Forgery CSRF vulnerability in WP Inventory Manager plugin = 2.1.0.13 versions...

CVE-2023-36409

Microsoft Edge Chromium-based Information Disclosure Vulnerability...

CVE-2023-42842

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1. An app may be able to access sensitive user data...

CVE-2023-42854

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. An app may be able to cause a denial-of-service to Endpoint Security clients...

CLSA-2023-1697463600 Fix CVE(s): CVE-2023-42116, CVE-2023-42114

SECURITY UPDATE: Multiple security issues - debian/patches/CVE-2023-42114.patch: fix possible OOB read in SPA authenticator - CVE-2023-42114 - debian/patches/CVE-2023-42116.patch: fix possible OOB write in SPA authenticator - CVE-2023-42116...

AZL-31304 CVE-2023-44487 affecting package cri-tools for versions less than 1.28.0-2

The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...

CVE-2023-41660

Cross-Site Request Forgery CSRF vulnerability in WPSynchro WP Synchro plugin = 1.9.1 versions...

CVE-2023-43953

SSCMS 7.2.2 was discovered to contain a cross-site scripting XSS vulnerability via the Content Management component...

CVE-2023-41309

Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect availability...

CVE-2023-41300

Vulnerability of parameters not being strictly verified in the PMS module. Successful exploitation of this vulnerability may cause the system to restart...