PT-2022-2537 · D Link · D-Link Dir-882

Name of the Vulnerable Software and Affected Versions: D-link DIR-882 version A1 FW130B06 Description: A command injection issue was found in the /usr/bin/cli endpoint, related to the handling of symbolic links. This could allow a remote attacker to execute arbitrary commands due to inadequate da...

wasmtime-cli (>=0.34.0 <=0.34.1) potentially affected by CVE-2022-24791 via wasmtime (>=0.34.0 <=0.34.1)

wasmtime CARGO version =0.34.0, =0.34.0, =0.34.1 Source cves: CVE-2022-24791 Source advisory: OSV:RUSTSEC-2022-0016...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.9.26 security update

Red Hat OpenShift Container Platform release 4.9.26 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.9. Red Hat Product Security has rated this update as having a...

Getting error: Couldn't agree a key exchange algorithm when accessing ADM CLI

Getting error: Couldn't agree a key exchange algorithm when accessing the ADM CLI after upgrading to 13.0.64.35...

Fedora: Security Advisory for httpie (FEDORA-2022-307d72ff7d)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: httpie-3.1.0-1.fc36

HTTPie is a CLI HTTP utility built out of frustration with existing tools. The goal is to make CLI interaction with HTTP-based services as human-friendly as possible. HTTPie does so by providing an http command that allows for issuing arbitrary HTTP requests using a simple and natural syntax and...

Tiktok-Scraper - TikTok Scraper. Download Video Posts, Collect User/Trend/Hashtag/Music Feed Metadata, Sign URL And Etc

Scrape and download useful information from TikTok. No login or password are required This is not an official API support and etc. This is just a scraper that is using TikTok Web API to scrape media and related meta information. Important notes As of right now it is NOT possible to download video...

Moderate: Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.21.0

Release of OpenShift Serverless Client kn 1.21.0 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

Fedora: Security Advisory for httpie (FEDORA-2022-cfcad08594)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

adaptdl-cli (>=0.2.2 <=0.2.11), agent-vault-proxy (=0.4.0) +124 more potentially affected by CVE-2022-24766 via mitmproxy (>=10.1.5 <=7.0.4)

mitmproxy PYPI version =10.1.5, =0.2.2, =1.0.0, =0.1.1, =0.2.0, =0.1.0, =0.1.2, =0.1.0, =0.1.0, =0.1.11, =1.0.5, =0.1.0, =0.2.0, =0.72.2, =0.75.43 and more Source cves: CVE-2022-24766 Source advisory: OSV:GHSA-GCX2-GVJ7-PXV3...

S3Sec - Check AWS S3 Instances For Read/Write/Delete Access

Test AWS S3 buckets for read/write/delete access This tool was developed to quickly test a list of s3 buckets for public read, write and delete access for the purposes of penetration testing on bug bounty programs. Found a bug bounty using this tool? Feel free to add me as a collaborator: @0xmoot...

CVE-2022-26265

Contao Managed Edition v1.5.0 was discovered to contain a remote command execution RCE vulnerability via the component phpcli parameter...

CVE-2022-27245

An issue was discovered in MISP before 2.4.156. app/Model/Server.php does not restrict generateServerSettings to the CLI. This could lead to SSRF...

CVE-2020-15388

A vulnerability in the Brocade Fabric OS before Brocade Fabric OS v9.0.1a, v8.2.3, v8.2.0CBN4, and v7.4.2h could allow an authenticated CLI user to abuse the history command to write arbitrary content to files...

CVE-2022-27245

An issue was discovered in MISP before 2.4.156. app/Model/Server.php does not restrict generateServerSettings to the CLI. This could lead to SSRF...

Contao 操作系统命令注入漏洞

Contao is an open source content management system CMS developed using PHP. The system supports search engines, rights management, and CSS frameworks. Contao Managed Edition version 1.5.0 suffers from an operating system command injection vulnerability, which stems from a Remote Command Execution...

Pro-Ukraine ‘Protestware’ Pushes Antiwar Ads, Geo-Targeted Malware

Researchers are tracking a number of open-source "protestware" projects on GitHub that have recently altered their code to display "Stand with Ukraine" messages for users, or basic facts about the carnage in Ukraine. The group also is tracking several code packages that were recently modified to...

[SECURITY] Fedora 35 Update: httpie-3.1.0-1.fc35

HTTPie is a CLI HTTP utility built out of frustration with existing tools. The goal is to make CLI interaction with HTTP-based services as human-friendly as possible. HTTPie does so by providing an http command that allows for issuing arbitrary HTTP requests using a simple and natural syntax and...

[SECURITY] Fedora 34 Update: httpie-3.1.0-1.fc34

HTTPie is a CLI HTTP utility built out of frustration with existing tools. The goal is to make CLI interaction with HTTP-based services as human-friendly as possible. HTTPie does so by providing an http command that allows for issuing arbitrary HTTP requests using a simple and natural syntax and...

Moderate: Red Hat Security Advisory: redhat-ds:11.3 security and bug fix update

An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.3 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...