Xcrawl3R - A CLI Utility To Recursively Crawl Webpages

xcrawl3r is a command-line interface CLI utility to recursively crawl webpages i.e systematically browse webpages' URLs and follow links to discover linked webpages' URLs. Features Recursively crawls webpages for URLs. Parses URLs from files .js, .json, .xml, .csv, .txt & .map. Parses URLs from...

avotes-parser-cli (>=0.0.0 <=0.4.3), avotes-parser-core (>=0.0.0 <=0.4.3) +5 more potentially affected by CVE-2023-39363 via vyper (>=0.2.15 <=0.3.0)

vyper PYPI version =0.2.15, =0.0.0, =0.0.0, =0.4.3, =1.15.1, =0.2.1, =2.0.36, =2.1.22 Source cves: CVE-2023-39363 Source advisory: OSV:GHSA-5824-CM3X-3C38...

Xurlfind3R - A CLI Utility To Find Domain'S Known URLs From Curated Passive Online Sources

xurlfind3r is a command-line interface CLI utility to find domain's known URLs from curated passive online sources. Features Fetches URLs from curated passive sources to maximize results: AlienVault's OTX BeVigil Common Crawl URLScan Github Intelligence X Wayback Machine With Wayback Machine,...

CVE-2023-39342

Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...

CVE-2023-39342 Dangerzone CLI does not sanitize ANSI escape characters

Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...

CVE-2023-39342

CVE-2023-39342 affects Dangerzone CLI (dangerzone-cli) prior to 0.4.2. The issue arises because the CLI logs container-output from the sanitization process to the user’s terminal and also logs file names; if the container is compromised, an attacker could return attacker-controlled strings to spo...

CVE-2023-39342 Dangerzone CLI does not sanitize ANSI escape characters

Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...

CVE-2023-39342 Dangerzone CLI does not sanitize ANSI escape characters

Dangerzone is software for converting potentially dangerous PDFs, office documents, or images to safe PDFs. The Dangerzone CLI dangerzone-cli command logs output from the container where the file sanitization takes place, to the user's terminal. Prior to version 0.4.2, if the container is...

PT-2023-26889 · Unknown · Dangerzone

Name of the Vulnerable Software and Affected Versions: Dangerzone versions prior to 0.4.2 Description: The issue affects the Dangerzone CLI, where output from the container is logged to the user's terminal. If the container is compromised, an attacker may spoof messages in the terminal or change...

Fortinet Fortigate Buffer overflow in execute extender command (FG-IR-23-149)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-149 advisory. - A stack-based buffer overflow vulnerability CWE-121 in Fortinet FortiOS before 7.0.3 allows a privileged attacker to execut...

IMDShift - Automates Migration Process Of Workloads To IMDSv2 To Avoid SSRF Attacks

AWS workloads that rely on the metadata endpoint are vulnerable to Server-Side Request Forgery SSRF attacks. IMDShift automates the migration process of all workloads to IMDSv2 with extensive capabilities, which implements enhanced security measures to protect against these attacks. Features...

Moderate: Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.29.1

Red Hat OpenShift Serverless 1.29.1 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in th...

Siemens in SCALANCE Products (CVE-2022-46144)

A vulnerability has been identified in SCALANCE SC622-2C All versions = 2.3 = 2.3 = 2.3 = 2.3 = 2.3 = 2.3 V3.0. Affected devices do not properly process CLI commands after a user forcefully quitted the SSH connection. This could allow an authenticated attacker to make the CLI via SSH or serial...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.11.46 security update

Red Hat OpenShift Container Platform release 4.11.46 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a...

CVE-2023-3718

CVE-2023-3718 is an authenticated command injection vulnerability in Aruba AOS-CX CLI that allows an attacker with valid credentials to execute arbitrary commands as a privileged user on the device, potentially fully compromising the underlying OS. The available documents confirm the vulnerabilit...

@christianhugo/mobile-builder (=0.7.3-beta.3), @saltcorn/mobile-builder (>=0.7.2 <=0.7.3-beta.3) potentially affected by unknown CVE via @saltcorn/cli (>=0.7.2-beta.10 <=0.7.3-beta.3)

@saltcorn/cli NPM version =0.7.2-beta.10, =0.7.2, =0.7.3-beta.3 Source cves: unknown CVE Source advisory: OSV:GHSA-WXF3-4FVJ-VQQX...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.13.6 bug fix and security update

Red Hat OpenShift Container Platform release 4.13.6 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

The vulnerability of the command-line interface of FortiOS operating systems and the FortiProxy proxy server, related to the use of uncontrolled format strings, allows attackers to execute arbitrary code.

The vulnerability of the command-line interface of FortiOS operating systems and the FortiProxy proxy server for protecting against Internet attacks is related to the use of uncontrolled format strings. Exploiting this vulnerability allows a attacker to execute arbitrary code using specially...

cn.leancloud:filter-service-core (>=1.9 <=1.13), cn.leancloud:filter-service-metrics (>=1.9 <=1.13) +348 more potentially affected by CVE-2023-38493 via com.linecorp.armeria:armeria (>=0.50.0 <=1.24.2)

com.linecorp.armeria:armeria MAVEN version =0.50.0, =1.9, =1.9, =0.3.1, =0.3.1, =0.3.1, =0.2.0, =0.13.0, =0.19.0, =0.0.1, =0.0.1, =0.0.2, =0.0.1, =0.0.1, =0.0.2, =0.0.1, =0.0.3 and more Source cves: CVE-2023-38493 Source advisory: OSV:GHSA-WVP2-9PPW-337J...

Cisco NX-OS CLI Command Software Image Signature Verification (CVE-2019-1812)

A vulnerability in the Image Signature Verification feature of Cisco NX-OS Software could allow an authenticated, local attacker with administrator-level credentials to install a malicious software image on an affected device. The vulnerability exists because software digital signatures are not...