Amazon Ion Security Breach

Amazon Ion is a type-rich, self-describing, hierarchical data serialization format from Amazon Amazon. It provides interchangeable binary and textual representations. A security vulnerability exists in Amazon Ion versions prior to 1.10.5, which stems from a stack overflow in Ion Java that could...

Kyverno security breach

Kyverno is an open source policy engine for Kubernetes by Kyverno. A security vulnerability exists in Kyverno versions prior to 1.10.5, which stems from a vulnerability that allows an attacker to take control of image summaries used by Kyverno users...

Supsystic WordPress plugin 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

PT-2020-15250 · Kata Containers · Kata Containers

Name of the Vulnerable Software and Affected Versions: Kata Containers versions prior to 1.11.1 Kata Containers versions prior to 1.10.5 Kata Containers version 1.9 and earlier Description: A malicious guest compromised before a container creation, such as a malicious guest image or a guest runni...

DEBIAN-CVE-2016-8640

A SQL injection vulnerability in pycsw all versions before 2.0.2, 1.10.5 and 1.8.6 that leads to read and extract of any data from any table in the pycsw database that the database user has access to. Also on PostgreSQL at least it is possible to perform updates/inserts/deletes and database...

Catalyst Mahara 'add to watchlist' cross-site scripting vulnerability

Catalyst Mahara is a social networking system from Catalyst IT in New Zealand. The system includes a blog, resume builder, file manager, and more. A cross-site scripting vulnerability exists in the 'add to watchlist' link in Catalyst Mahara versions 1.9 before 1.9.7, 1.10 before 1.10.5, and 15.04...