4 matches found
Sensitive Cookie in HTTPS Session Without "Secure" Attribute
Overview Kentico.Xperience.Libraries is a package for libraries and applications that use Kentico Xperience API. Affected versions of this package are vulnerable to Sensitive Cookie in HTTPS Session Without "Secure" Attribute via the SetValue method in the CookieHelper class. The requireSSL...
Linux Distros Unpatched Vulnerability : CVE-2023-39366
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability...
LangChain < 0.0.27 SSRF
The version of LangChain installed on the remote host is prior to 0.0.27. It is, therefore, affected by a server-side request forgery SSRF vulnerability in the function loadlocal in the library libs/community/langchaincommunity/retrievers/tfidf.py of the component TFIDFRetriever. Note that Nessus...
Mailreader 2.3.30 - 2.3.31 Multiple Vulnerabilities
Mailreader.com software is installed. A directory traversal flaw allows anybody to read arbitrary files on your system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. References: Date: Mon, 28 Oct 2002 17:48:04 +0800 From: "pokleyzz" To: "bugtraq" , "Shaharil Abdul Malek" , "sk" , "pokley" ...