ASUSTOR Data Master 缓冲区错误漏洞

ASUSTOR Data Master is ASUS China's proprietary operating system on the ASUSTOR NAS, featuring a tablet-like graphical interface comparable to a zero-learning curve, allowing people to get started as soon as they use it. A security vulnerability exists in ASUSTOR Data Master versions prior to...

SUSE CVE-2019-20925

An unauthenticated client can trigger denial of service by issuing specially crafted wire protocol messages, which cause the message decompressor to incorrectly allocate memory. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13; MongoDB...

BlueSpice 跨站脚本漏洞

BlueSpice is free Wiki software from BlueSpice based on the MediaWiki engine. A cross-site scripting vulnerability exists in BlueSpice versions prior to 4.2.1 that stems from the presence of cross-site scripting XSS, which allows users with regular account and edit privileges to inject arbitrary...

GHSA-35C4-5QFP-WXJ6 Mattermost Server exposes team creator's e-mail address to other members

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It discloses the team creator's e-mail address to members...