Cross site scripting

A vulnerability has been found in SourceCodester Health Center Patient Record Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file birthingprint.php. The manipulation of the argument birthid leads to cross site scripting. The attack can be...

GSD-2023-1002394 ASoC: SOF: Intel: hda-dai: fix possible stream_tag leak

ASoC: SOF: Intel: hda-dai: fix possible streamtag leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.232 by commit...

GSD-2023-1002372 net: sched: sch: Fix off by one in htb_activate_prios()

net: sched: sch: Fix off by one in htbactivateprios This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.169 by commit...

GSD-2023-1002368 xfrm/compat: prevent potential spectre v1 gadget in xfrm_xlate32_attr()

xfrm/compat: prevent potential spectre v1 gadget in xfrmxlate32attr This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.94 by commit...

GSD-2023-1002357 ALSA: hda: Do not unset preset when cleaning up codec

ALSA: hda: Do not unset preset when cleaning up codec This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.95 by commit...

Hiatus Hacking Campaign Targets DrayTek Vigor Routers to Steal Data

Threat Level Attack Report Follow Hive Pro for a detailed threat advisory, download the pdf file here from HiveForce Labs. Summary A malware campaign called "Hiatus" that targets business-grade routers, specifically DrayTek Vigor models 2960 and 3900 running an i386 architecture. The campaign...

LQTYStaking.sol – Reentrancy risk in stake() unstake() functions

Lines of code Vulnerability details In the LQTY smart contract, the stake and unstake functions are used to add or remove a certain amount of LQTY tokens from a user's stake, respectively. Both functions are designed to update the user's stake and the total amount of LQTY staked while allowing...

Oracle Linux 7 : pesign (ELSA-2023-1093)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-1093 advisory. 0.109-11.0.1 - RPM macro fix Petr Benes - updates for Oracle Linux test certificate Alexey Petrenko - update Oracle Linux certificates Alexey Petrenko 0.109-11 ...

Denial Of Service (DoS)

Linux kernel is vulnerable to Denial Of Service DoS. The vulnerability exists due to the use-after-free in the 6pack.c, allowing an attacker to cause an application crash by simulating the ax25 device using a 6pack driver from user space...

CVE-2023-26481 Insufficient user check in FlowTokens by Email stage

authentik is an open-source Identity Provider. Due to an insufficient access check, a recovery flow link that is created by an admin or sent via email by an admin can be used to set the password for any arbitrary user. This attack is only possible if a recovery flow exists, which has both an...

CVE-2023-26491

RSSHub is an open source and extensible RSS feed generator. When the URL parameters contain certain special characters, it returns an error page that does not properly handle XSS vulnerabilities, allowing for the execution of arbitrary JavaScript code. Users who access the deliberately constructe...

Cross site scripting

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network EPN Manager could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface on an affected device. This...

CVE-2023-20104

CVE-2023-20104 affects Cisco Webex App for Web. The vulnerability resides in the file upload functionality where insufficient validation of user-supplied input enables an unauthenticated, remote attacker to trigger cross-site scripting (XSS) by persuading a user to visit a crafted URL after recei...

Google Android elevation of privilege vulnerability (CNVD-2023-26073)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability, which is caused by improper use of cryptocurrency. An attacker can exploit the vulnerability to gain elevated privileges...

CVE-2022-43902

IBM MQ CVE-2022-43902 affects IBM MQ 9.1 LTS/CD, 9.2 LTS/CD, and 9.3 LTS/CD. The vulnerability enables a denial-of-service through specially crafted PCF or MQSC messages, with the issue traced to the IBM MQ Server component. Remediations (APAR IT42613) are available: upgrade to 9.3.1.1 for 9.1/9....

CVE-2022-36021

CVE-2022-36021 affects Redis: authenticated users can issue string-matching commands (e.g., SCAN or KEYS) with a crafted pattern to trigger a denial-of-service, causing Redis to hang and use 100% CPU. Public advisories in connected documents confirm the issue and document the fixed versions: Redi...

CVE-2022-27677

Failure to validate privileges during installation of AMD Ryzen™ Master may allow an attacker with low privileges to modify files potentially leading to privilege escalation and code execution by the lower privileged user...

Malicious DPRK Actors Target the Healthcare Industry in the US & South Korea

Threat Level Attack Report Follow Hive Pro for a detailed threat advisory, download the pdf file here from HiveForce Labs. Summary State-sponsored malicious actors from the Democratic Peoples Republic of Korea DPRK have carried out a ransomware attack against the healthcare systems of South Korea...

Denial Of Service (DoS)

Linux kernel is vulnerable to Denial Of Service DoS. The vulnerability exists through the null pointer dereference in nftablesupdtable, allowing an attacker to cause an application crash...

Fortinet FortiWeb Formatting String Error Vulnerability

Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A formatted string error vulnerability exist...