19 matches found
Moderate: Red Hat Security Advisory: python3.12 security update
An update for python3.12 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
CVE-2014-0565
creationtimestamp| type| source ---|---|--- 2025-08-31 03:13:15+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...
CVE-2006-3845
creationtimestamp| type| source ---|---|--- 2025-08-31 03:13:14+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...
CVE-2014-6334
creationtimestamp| type| source ---|---|--- 2025-08-31 03:01:23+00:00| seen| MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d 2025-08-31 03:12:55+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...
CVE-2025-9684
Portabilis i-Educar up to 2.10 is affected by SQL injection in the /module/FormulaMedia/edit endpoint, triggered by manipulating the ID argument. The vulnerability allows remote exploitation and has publicly disclosed exploits. Remediation: upgrade to version 2.10 or later (or apply the official ...
CGA-Q839-HVMM-F7FV
Bulletin has no description...
CGA-53PC-P8WF-WRQ3
Bulletin has no description...
GHSA-4FXF-XGRM-8FCJ FormCms avatar upload feature has a stored cross-site scripting (XSS) vulnerability
FormCms v0.5.5 contains a stored cross-site scripting XSS vulnerability in the avatar upload feature. Authenticated users can upload .html files containing malicious JavaScript, which are accessible via a public URL. When a privileged user accesses the file, the script executes in their browser...
Manipulated Regions Localization for Partially Deepfake Audio: a Survey
With the development of audio deepfake techniques, attacks with partially deepfake audio are beginning to rise. Compared to fully deepfake, it is much harder to be identified by the detector due to the partially cryptic manipulation, resulting in higher security risks. Although some studies have...
Dual-Conditional Deep Generation of Network Traffic Data for Network Intrusion Detection System Balancing
Whitepaper called Dual-Conditional Deep Generation Of Network Traffic Data For Network Intrusion Detection System Balancing...
Exploit for SQL Injection in Eniture Ltl_Freight_Quotes
CVE-2024-13489 LTL Freight Quotes – Old Dominion Edition = 5.6...
PT-2024-36522 · Undefined · Undefined
Two more CVEs: - CVE-2024-55468 - CVE-2024-55469...
PCI DSS 4.0.1: New Clarifications on Client-Side Security – What You Need to Know
As a leading provider of web application and API security solutions, Imperva is committed to helping merchants, payment processors, and anyone seeking to comply with the latest PCI DSS requirements. We previously discussed the changes introduced in PCI DSS 4.0. This blog will cover the...
Exploit for Absolute Path Traversal in Microsoft
MagicDot A set of rootkit-like abilities for unprivileged user...
What’s up with WhatsApp’s privacy policy?
WhatsApp has been in the news recently after changes to its privacy policy caused a surge of interest in rival messaging app Signal. Initial reports may have worried a lot of folks, leading to inevitable clarifications and corrections. But what, you may ask, actually happened? Is there a problem?...
SUSE-SU-2016:3162-1 Security update for pacemaker
This update for pacemaker fixes one security issue and several non-security issues. The following security issue has been fixed: - libcrmcommon: Fix improper IPC guarding. bsc1007433, CVE-2016-7035 The following non-security issues have been fixed: - Add logrotate to reqs of pacemaker-cli. - Add...
CVE-2025-58419
...
Language Detectoid for fr-ca
Language Detectoid for fr-ca...
Language Detectoid for bg-bg
Language Detectoid for bg-bg...