PT-2022-20580 · Xwiki · Xwiki-Platform-Oldcore

Name of the Vulnerable Software and Affected Versions: XWiki Platform Old Core versions 11.3.7 through 12.0RC1 XWiki Platform Old Core version 11.0.3 Description: A bug in XWikiRights resolution of groups can be exploited to obtain privilege escalation. Editing a right with the object editor lead...

Remote code execution

vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. In versions prior to version 3.9.11, a threat actor can bypass the sandbox protections to gain remote code execution rights on the host running the sandbox. This vulnerability was patched in the release of...

CVE-2022-36064 Shescape Inefficient Regular Expression Complexity vulnerability

Shescape is a shell escape package for JavaScript. An Inefficient Regular Expression Complexity vulnerability impacts users that use Shescape to escape arguments for the Unix shells Bash and Dash, or any not-officially-supported Unix shell; and/or using the escape or escapeAll functions with the...

sabt.rgroup.ae Cross Site Scripting vulnerability OBB-2883411

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

PT-2022-23541 · Unknown · Novel-Plus

Name of the Vulnerable Software and Affected Versions: Novel-Plus version 3.6.2 Description: The issue allows for an arbitrary file download via the "background file download API". Recommendations: For Novel-Plus version 3.6.2, consider restricting access to the background file download API until...

CVE-2022-36045 Account takeover via cryptographically weak PRNG in NodeBB Forum

NodeBB Forum Software is powered by Node.js and supports either Redis, MongoDB, or a PostgreSQL database. It utilizes web sockets for instant interactions and real-time notifications. utils.generateUUID, a helper function available in essentially all versions of NodeBB as far back as v1.0.1 and...

CVE-2022-36037

kirby is a content management system CMS that adapts to many different projects and helps you build your own ideal interface. Cross-site scripting XSS is a type of vulnerability that allows execution of any kind of JavaScript code inside the Panel session of the same or other users. In the Panel,...

Cross site scripting

kirby is a content management system CMS that adapts to many different projects and helps you build your own ideal interface. Cross-site scripting XSS is a type of vulnerability that allows execution of any kind of JavaScript code inside the Panel session of the same or other users. In the Panel,...

CVE-2022-36037 Cross-site scripting (XSS) from dynamic options in the multiselect field in Kirby

kirby is a content management system CMS that adapts to many different projects and helps you build your own ideal interface. Cross-site scripting XSS is a type of vulnerability that allows execution of any kind of JavaScript code inside the Panel session of the same or other users. In the Panel,...

PT-2022-23479 · Sinsiu · Sinsiu Enterprise Website System

Name of the Vulnerable Software and Affected Versions: Sinsiu Sinsiu Enterprise Website System version 1.1.1.0 Description: The issue is related to a remote code execution RCE vulnerability. It can be exploited via the component /upload/admin.php?/deal/. Recommendations: For Sinsiu Sinsiu...

PT-2022-23398 · H3C · H3C B5 Mini

Name of the Vulnerable Software and Affected Versions: H3C B5 Mini version B5MiniV100R005 Description: A stack overflow issue was discovered via the function AddMacList. This issue affects the H3C B5 Mini device. Recommendations: For H3C B5 Mini version B5MiniV100R005, consider disabling the...

PT-2022-24096 · Tenda · Tenda Ax1803

Name of the Vulnerable Software and Affected Versions: Tenda AX1803 version 1.0.0.1 Description: A stack overflow issue was discovered via the list parameter at the formSetQosBand function. Recommendations: For Tenda AX1803 version 1.0.0.1, consider restricting access to the formSetQosBand functi...

PT-2022-23427 · H3C · H3C Magic Nx18 Plus

Name of the Vulnerable Software and Affected Versions: H3C Magic NX18 Plus version NX18PV100R003 Description: A stack overflow issue was discovered via the function EDitusergroup. Recommendations: For H3C Magic NX18 Plus version NX18PV100R003, as a temporary workaround, consider disabling the...

Double free

Directus is a free and open-source data platform for headless content management. The Directus process can be aborted by having an authorized user update the filenamedisk value to a folder and accessing that file through the /assets endpoint. This vulnerability has been patched and release v9.15....

PT-2022-4391 · Adobe · Framemaker

Name of the Vulnerable Software and Affected Versions: Adobe FrameMaker versions 2019 Update 8 and earlier Adobe FrameMaker versions 2020 Update 4 and earlier Description: The issue is related to an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past th...

PT-2022-16409 · Tcl · Tcl Linkhub Mesh Wi-Fi

Name of the Vulnerable Software and Affected Versions: TCL LinkHub Mesh Wi-Fi MS1G 00 01.00 14 Description: A buffer overflow issue exists in the GetValue functionality. This can be triggered by a specially-crafted configuration value, leading to a buffer overflow. An attacker can modify a...

CVE-2022-35926 Out-of-bounds read in IPv6 neighbor solicitation in Contiki-NG

Contiki-NG is an open-source, cross-platform operating system for IoT devices. Because of insufficient validation of IPv6 neighbor discovery options in Contiki-NG, attackers can send neighbor solicitation packets that trigger an out-of-bounds read. The problem exists in the module...

[Important] [Security] Virtuozzo ReadyKernel patch 144.1 for Virtuozzo Hybrid Server 7.0, 7.5

The cumulative Virtuozzo ReadyKernel patch was updated with stability fixes. The patch applies to all supported kernels of Virtuozzo Hybrid Server 7.x. NOTE: No more updates are planned for the kernels 3.10.0-1127.8.2.vz7.158.8 and 3.10.0-1127.18.2.vz7.163.46. Vulnerability id: VSTOR-55377...

ibuilder4.it Cross Site Scripting vulnerability OBB-2809634

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Design/Logic Flaw

OpenZeppelin Contracts is a library for smart contract development. Versions 4.1.0 until 4.7.1 are vulnerable to the SignatureChecker reverting. SignatureChecker.isValidSignatureNow is not expected to revert. However, an incorrect assumption about Solidity 0.8's abi.decode allows some cases to...