299 matches found
IBM Safer Payments 安全漏洞
IBM Safer Payments is the first true cognitive fraud prevention solution for payment processing from IBM USA. helps clients create customized, user-friendly decision models. IBM Safer Payments has a security vulnerability that stems from misallocation of resources and vulnerability to denial of...
Exploit for CVE-2024-40094
CVE-2024-40094 ENF ExecutableNormalizedFields Denial of Serv...
[SECURITY] Fedora 41 Update: sympa-6.2.74-1.fc41
Sympa is scalable and highly customizable mailing list manager. It can cope with big lists 200,000 subscribers and comes with a complete user and admin Web interface. It is internationalized, and supports the us, fr, de, es, it, fi, and chinese locales. A scripting language allows you to extend t...
Important: Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.0 release.
Red Hat Developer Hub 1.4 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single pa...
Low: Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.3 bugfix release
Red Hat Developer Hub 1.3.3 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...
Exploit for Path Traversal in Grafana
Automated Exploit Tool for Grafana CVE-2021-43798 !Previewi...
Oracle Siebel Server (October 2019 CPU)
The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the October 2019 CPU advisory. - Vulnerability in the Siebel UI Framework product of Oracle Siebel CRM component: Customizable Prod/Configurator Apache Tomcat. Supported versions that a...
Digital China Networks vendor 安全漏洞
Digital China Networks vendor is a series of vendor firewalls from Digital China Networks DCCN, a Chinese company. A security vulnerability exists in Digital China Networks vendor version v.7.2.6.120, which originates from a vulnerability that could allow a remote attacker to execute arbitrary co...
emacs security update
An update is available for emacs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GNU Emacs is a powerful, customizable, self-documenting text editor. It provide...
Important: Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.3.1 bugfix release
Red Hat Developer Hub 1.3.1 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...
How should <selectedoption> work?
We're finally getting a way to fully style & customise elements! But there's a detail I'd like everyone's opinion on. Update: Your feedback was heard, and folks have agreed to change the behaviour here. See the update below. A brief intro to customisable If you want to hear about it in depth, I...
Exploit for Improper Input Validation in Cacti
This repository is a PoC exploit for CVE-2024-25641, a vulnerabi...
CVE-2024-6398
An information disclosure vulnerability in SWG in versions 12.x prior to 12.2.10 and 11.x prior to 11.2.24 allows information stored in a customizable block page to be disclosed to third-party websites due to Same Origin Policy Bypass of browsers in certain scenarios. The risk is low, because oth...
GNU Emacs, Org Mode: Multiple Vulnerabilities
Background GNU Emacs is a highly extensible and customizable text editor. Description Multiple vulnerabilities have been discovered in GNU Emacs. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for details. Workaround There is no...
[SECURITY] Fedora 40 Update: qt5-qtvirtualkeyboard-5.15.14-1.fc40
The Qt Virtual Keyboard project provides an input framework and reference key board frontend for Qt 5. Key features include: Customizable keyboard layouts and styles with dynamic switching. Predictive text input with word selection. Character preview and alternative character view. Automatic...
[SECURITY] Fedora 40 Update: qt6-qtvirtualkeyboard-6.7.1-1.fc40
The Qt Virtual Keyboard project provides an input framework and reference key board frontend for Qt 6. Key features include: Customizable keyboard layouts and styles with dynamic switching. Predictive text input with word selection. Character preview and alternative character view. Automatic...
SherlockChain - A Streamlined AI Analysis Framework For Solidity, Vyper And Plutus Contracts
SherlockChain is a powerful smart contract analysis framework that combines the capabilities of the renowned Slither tool with advanced AI-powered features. Developed by a team of security experts and AI researchers, SherlockChain offers unparalleled insights and vulnerability detection for...
[SECURITY] Fedora 40 Update: rust-silver-2.0.1-8.fc40
A cross-shell customizable powerline-like prompt with icons...
Insecure Direct Object Reference (IDOR)
org.bonitasoft.engine, bonita-server is vulnerable to Insecure Direct Object Reference IDOR. The vulnerability is due to the absence of dynamic permissions, which previously existed only in the Subscription edition and were not customizable in the Community edition...
GHSA-76V2-48W6-CRXR Bonitasoft Runtime Community edition's contains an insecure direct object references vulnerability
In Bonitasoft runtime Community edition, the lack of dynamic permissions causes IDOR vulnerability. Dynamic permissions existed only in Subscription edition and have now been restored in Community edition, where they are not custmizable...