148 matches found
PT-2022-27842 · Ep3-Bs · Ep3-Bs
Name of the Vulnerable Software and Affected Versions: ep3-bs versions up to 1.7.x ep3-bs version 1.8.0 Description: A vulnerability has been found in ep3-bs, affecting an unknown part, which leads to cross site scripting. The manipulation can be initiated remotely. Recommendations: For ep3-bs...
CVE-2022-4637 ep3-bs cross site scripting
A vulnerability classified as problematic has been found in ep3-bs up to 1.7.x. This affects an unknown part. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 1.8.0 is able to address this issue. The name of the patch is...
CLSA-2022-1657813374 Fix CVE(s): CVE-2022-2182, CVE-2022-2183, CVE-2022-2210, CVE-2022-2207
SECURITY UPDATE: Heap-based buffer overflow in function utfptr2char - debian/patches/CVE-2022-2182.patch: When on line zero check the column is valid for line one in doonecmd function - CVE-2022-2182 SECURITY UPDATE: Out-of-bounds read in function getlispindent - debian/patches/CVE-2022-2183.patc...
bs-photo.de Cross Site Scripting vulnerability OBB-2659419
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
MAL-2022-3723 Malicious code in huobi-bs-fe-scaffold (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bac5154dea0a0982316b2a0d54d6df43f25cd76daacac6d47c2b7a3bee9e0f4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bs-label (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 105773063a191660ea8a57cdb0567ef48908ebd31b8659bdd8760f88d614dae4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bs-sidebar (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 205dccdeb1edb92580ab0690e8ca24d862a431a55960aad0a69f0bc7d19ee9d8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1701 Malicious code in bs-label (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 105773063a191660ea8a57cdb0567ef48908ebd31b8659bdd8760f88d614dae4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1702 Malicious code in bs-sidebar (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 205dccdeb1edb92580ab0690e8ca24d862a431a55960aad0a69f0bc7d19ee9d8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1700 Malicious code in bs-dropdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0008236b6e7e91cceb276f75cacff76e11d53cdf34f07904ad2faaca38f143a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in bs-dropdown (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0008236b6e7e91cceb276f75cacff76e11d53cdf34f07904ad2faaca38f143a3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
@bildvitta/vuex-offline (>=3.0.0-beta.0 <=3.0.0-beta.3), @indexeddb-orm/idb-orm (>=0.0.1 <=0.0.3) +4 more potentially affected by CVE-2022-21189 via dexie (>=4.0.0-alpha.1 <=4.0.0-alpha.2)
dexie NPM version =4.0.0-alpha.1, =3.0.0-beta.0, =0.0.1, =1.0.0, =1.0.0, =11.5.0, =12.4.1 Source cves: CVE-2022-21189 Source advisory: SNYK:JS-DEXIE-2607042...
Booking Core Cross-Site Scripting Vulnerability
Booking Core is an application. A Laravel-based booking system designed for travel websites, malls, travel agents, tour operators, B&Bs, villa rentals, resort rentals, Make Travel websites.Booking Core suffers from a cross-site scripting vulnerability, which stems from a cross-site scripting XSS...
Booking Core has an unspecified vulnerability
Booking Core is an application. A Laravel-based booking system designed for travel websites, malls, travel agents, tour operators, B&Bs, villa rentals, resort rentals, Make Travel websites.Booking Core has a security vulnerability that stems from the subscription functionality in Ultimate Booking...
CVE-2021-32471
Insufficient input validation in the Marvin Minsky 1967 implementation of the Universal Turing Machine allows program users to execute arbitrary code via crafted data. For example, a tape head may have an unexpected location after the processing of input composed of As and Bs instead of 0s and 1s...
bs-tek.co.kr Cross Site Scripting vulnerability OBB-1453829
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Malicious Package in bs-sha3
Version 0.8.0 contained malicious code. The package targeted the Ethereum cryptocurrency and performed transactions to wallets not controlled by the user. Recommendation Remove the package from your environment. Ensure no Ethereum funds were compromised...
bs-sundermann.de Cross Site Scripting vulnerability OBB-1237554
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
bs-servise.ru Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1190037 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
UBUNTU-CVE-2019-20630
An issue was discovered in libgpac.a in GPAC before 0.8.0, as demonstrated by MP4Box. It contains a heap-based buffer over-read in BSReadByte called from gfbsreadbit in utils/bitstream.c that can cause a denial of service via a crafted MP4 file...