5 matches found
Exploit for CVE-2023-38820
DLL-Planting-Slack-4.33.73-CVE-2023-38820 DLL Planting in the...
Regular Expression Denial Of Service (ReDoS)
jsx-slack is vulnerable to regular expression denial of service. The vulnerability exists due to the blockquote tags are not properly validated, allowing an attacker to cause an application crash...
jsx-slack 安全漏洞
jsx-slack builds JSON objects from JSX for the Slack block suite surface. A security vulnerability exists in jsx-slack, which stems from the fact that the CVE-2021-43838 patch is not sufficient to prevent regular expressions in the CNNVD-202112-2019 tag, then regular expressions used internally t...
Critical Slack Bug Allows Access to Private Channels, Conversations
A critical vulnerability in the popular Slack collaboration app would allow remote code-execution RCE. Attackers could gain full remote control over the Slack desktop app with a successful exploit — and thus access to private channels, conversations, passwords, tokens and keys, and various...
Tackling the Collaboration Conundrum
It’s 8 a.m. and you’ve just polished off a full cup of dark-roast coffee to jump-start your day. After booting up your PC, you instinctively open up Outlook, along with Slack or Teams or TeamViewer. While chatting with a co-worker, you recall that you need to send administrative credentials to he...