Refinalization with theft of funds from other auctions

Lines of code Vulnerability details Vulnerability details Description There is a finalize function in the SizeSealed smart contract. The function traverses the array of the bids sorted by price descending. There is a prevention of the refinalization by the modifier atStateidToAuctionauctionId,...

F5 Networks BIG-IP : OpenSSH vulnerability (K42531048)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10 / 16.1.4 / 17.1.1. It is, therefore, affected by a vulnerability as referenced in the K42531048 advisory. In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server ...

varnish -- Request Smuggling Vulnerability

Varnish Cache Project reports: A request smuggling attack can be performed on Varnish Cache servers by requesting that certain headers are made hop-by-hop, preventing the Varnish Cache servers from forwarding critical headers to the backend. Among the headers that can be filtered this way are bot...

CVE-2022-2387

CVE-2022-2387 affects the Easy Digital Downloads WordPress plugin prior to v3.0. The vulnerability is a CSRF flaw in the deletion of payment history and a failure to verify that the target post is a payment history, enabling a logged-in attacker to cause arbitrary post deletions via CSRF. Documen...

CVE-2022-33684

The Apache Pulsar C++ Client does not verify peer TLS certificates when making HTTPS calls for the OAuth2.0 Client Credential Flow, even when tlsAllowInsecureConnection is disabled via configuration. This vulnerability allows an attacker to perform a man in the middle attack and intercept and/or...

Design/Logic Flaw

The Apache Pulsar C++ Client does not verify peer TLS certificates when making HTTPS calls for the OAuth2.0 Client Credential Flow, even when tlsAllowInsecureConnection is disabled via configuration. This vulnerability allows an attacker to perform a man in the middle attack and intercept and/or...

Unauthenticated stored XSS via username & name parameters

There is a stored XSS vulnerability due to improper sanitization of usernames. Vulnerable code User.php line 532: php public function isValidLoginstring $login: bool $login = string$login; if strlen$login loginMinLength || !pregmatch$this-validUsername, $login $this-errors =...

Design/Logic Flaw

"IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-"Force ID: 231361...

CVE-2022-20772

CVE-2022-20772 affects Cisco Email Security Appliance (ESA) and Cisco Secure Email and Web Manager. The issue is an HTTP Response Header Injection/HTTP response splitting caused by insufficient input sanitization, allowing an unauthenticated, remote attacker to inject headers and influence the re...

CVE-2022-20942

CVE-2022-20942 concerns information disclosure in Cisco Email Security Appliance (ESA), Cisco Secure Email and Web Manager, and Cisco Secure Web Appliance (formerly WSA). The issue stems from weak enforcement of back-end authorization checks, allowing an authenticated, remote attacker to obtain s...

CVE-2022-20961

CVE-2022-20961 refers to a CSRF vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE). The issue arises from insufficient CSRF protections, allowing an unauthenticated, remote attacker to trick a logged-in user into performing arbitrary actions on the affecte...

Find and Replace All <= 1.3 - Arbitrary Replacement via CSRF

The plugin does not have CSRF check when replacing string, which could allow attackers to make a logged admin replace arbitrary string in database tables via a CSRF attack PoC Make a logged in admin open a page with the below code...

CVE-2022-38710

IBM Robotic Process Automation (RPA) versions 21.0.1 and 21.0.2 are vulnerable to information disclosure of sensitive version details, which could aid attackers in further compromising the system. Affected products/versions include IBM RPA &lt; 21.0.3, IBM RPA as a Service &lt; 21.0.3, and IBM RP...

SAP 3D Visual Enterprise Author DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Author. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

CVE-2022-40747

"IBM InfoSphere Information Server 11.7 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 236584."...

Open5GS Denial of Service Vulnerability (CNVD-2023-08774)

Open5GS is a C open source implementation of 5G Core and Epc, the core network of the Lte/Nr network. version v2.4.11 of Open5GS suffers from a denial of service vulnerability that stems from the failure or inability to free dynamically allocated heap memory in src/smf/pfcp-path.c. An attacker...

Cisco Email Security Appliance HTTP Response Header Injection (cisco-sa-ESA-HTTP-Inject-nvsycUmR)

According to its self-reported version, Cisco Email Security Appliance is affected by a vulnerability due to a failure to sanitize input values. An unauthenticated, remote attacker can exploit this, by injecting malicious HTTP headers, in order to conduct an HTTP response splitting attack. Please...

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2022-2702)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cisco Umbrella Stored Cross-Site Scripting Vulnerability

A vulnerability in multiple management dashboard pages of Cisco Umbrella could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the Cisco Umbrella dashboard. This vulnerability is due to unsanitized user input. An attacker could exploit this...

Multiple Vulnerabilities Reported in Checkmk IT Infrastructure Monitoring Software

Multiple vulnerabilities have been disclosed in Checkmk IT Infrastructure monitoring software that could be chained together by an unauthenticated, remote attacker to fully take over affected servers. "These vulnerabilities can be chained together by an unauthenticated, remote attacker to gain co...