9 matches found
CVE-2023-25313
OS injection vulnerability in World Wide Broadcast Network AVideo version before 12.4, allows attackers to execute arbitrary code via the video link field to the Embed a video link feature...
SUSE CVE-2019-18448
An issue was discovered in GitLab Community and Enterprise Edition before 12.4. It has Incorrect Access Control...
SUSE CVE-2019-18450
An issue was discovered in GitLab Community and Enterprise Edition before 12.4 in the Project labels feature. It has Insecure Permissions...
SUSE CVE-2020-14350
It was found that some PostgreSQL extensions did not use searchpath safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affect...
PT-2021-7581 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.4 Description: The issue is related to a sandboxed process that may be able to circumvent sandbox restrictions. This is due to insufficient access control when handling XPC messages in the LaunchServices service of...
ALPINE-CVE-2020-14350
It was found that some PostgreSQL extensions did not use searchpath safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into executing a specially crafted script, during the installation or update of such extension. This affect...
UBUNTU-CVE-2019-18449
An issue was discovered in GitLab Community and Enterprise Edition before 12.4 in the autocomplete feature. It has Insecure Permissions issue 2 of 2...
GitLab Information Disclosure Vulnerability (CNVD-2019-42894)
GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Community and...
Apple iOS Security Bypass Vulnerability (CNVD-2020-04516)
Apple iOS is an operating system for mobile devices developed by Apple Inc. Telephony is one of the telephony components. A security vulnerability exists in the Telephony component in Apple iOS versions prior to 12.4. An attacker could use this vulnerability to allow the receiver to simultaneousl...