Astro 跨站脚本漏洞

Astro is a content-driven website framework developed by Astro OpenSource. Versions of Astro prior to 6.1.6 contained a cross-site scripting vulnerability. This vulnerability stemmed from the use of case-sensitive regular expressions in the defineScriptVars function, which cleaned and injected...

PT-2018-18717 · Synology · Synology Diskstation Manager

Name of the Vulnerable Software and Affected Versions: Synology DiskStation Manager DSM versions prior to 6.1.6-15266 Description: The issue allows remote attackers to steal credentials. Recommendations: For versions prior to 6.1.6-15266, update to version 6.1.6-15266 or later to resolve the issu...

Interspire Email Marketer Security Bypass Vulnerability

BigCommerec Interspire Email Marketer IEM is a suite of email marketing software. A security vulnerability exists in the function used to detect a user's login status in the init.php file in BigCommerec IEM versions prior to 6.1.6. A remote attacker can exploit this vulnerability to bypass...