EUVD-2021-15905

Malware in sbrugna...

CVE-2021-29267

Sherlock SherlockIM through 2021-03-29 allows Cross Site Scripting XSS by leveraging the api/Files/Attachment URI to attack help-desk staff via the chatbot feature...

Incorrectly Specified Chat Message Destinations

Tgstation.Server.Common is vulnerable to Incorrectly Specified Chat Message Destinations. The vulnerability exists because the library does not properly clear the DMAPI channels cache on TGS detach, which allows an attacker to gain sensitive information by sending malicious messages to configured...

ChatBot Application with a Suggestion Feature SQL注入漏洞

ChatBot Application with a Suggestion FeatureA ChatBot application with a suggestion feature. chatBot Application with a Suggestion Feature v1.0 is vulnerable to a SQL injection vulnerability in /simple chatbot/classes/Master.php?f=deleteresponse, id is missing validation for external input SQL...

CVE-2021-29267

Sherlock SherlockIM through 2021-03-29 allows Cross Site Scripting XSS by leveraging the api/Files/Attachment URI to attack help-desk staff via the chatbot feature...