EUVD-2021-14215

Malware in sbrugna...

YetiForceCrm 代码问题漏洞

YetiForceCrm is an open source Crm system from the Polish company YetiForce. A security vulnerability exists in YetiForceCrm versions prior to 6.4.0, which stems from a problematic unreconstructed file upload in the application. An attacker could send a malicious file to the victim and use the...

CVE-2021-20797

Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue occurs only when using Mozilla Firefox...

Jenkins 信息泄露漏洞

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A vulnerability exists in...

ZTE ZXCLOUD GoldenData VAP Encryption Issue Vulnerability

ZTE ZXCLOUD GoldenData VAP is a set of big data solutions from ZTE Corporation ZTE, China. A vulnerability exists in ZTE ZXCLOUD GoldenData VAP versions prior to 4.01.01.02 due to an encryption issue. The vulnerability stems from the network system or product not properly using the relevant...

LinkedIn Boosts Security With New Session Alert and Privacy Control Tools

With a need to give more controls in users’ hands, LinkedIn has introduced a few new security features that the company says will help users of the social network for professionals keep their accounts and data more secure. SESSION ALERTS Just like Google, Facebook, Yahoo and other online services...