path-sanitizer 路径遍历漏洞

path-sanitizer is a simple lightweight npm package from the individual developers at Cabra. A path traversal vulnerability exists in path-sanitizer versions prior to 3.1.0. An attacker could use this vulnerability to access sensitive files or directories on the system...

LGSL 跨站脚本漏洞

LGSL Live Game Server List is a list of live game servers by Neon Personal Developers. A cross-site scripting vulnerability exists in LGSL versions prior to 7.0.0, which stems from vulnerability to cross-site scripting attacks...

PT-2024-29850 · Unknown · Edgecross Basic Software For Windows +1

Name of the Vulnerable Software and Affected Versions: Edgecross Basic Software for Windows versions 1.00 and later Edgecross Basic Software for Developers versions 1.00 and later Description: The issue allows a malicious local attacker to execute arbitrary malicious code, resulting in informatio...

[SECURITY] Fedora 41 Update: python3.9-3.9.21-1.fc41

Python 3.9 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.9, see other distributions that support it, such as CentOS or RHEL or older Fedo...

What’s New for Developers: November 2024

As the holiday season approaches and we bid farewell to another year, there’s no slowing down in developer content and releases...

electron33 -- Inappropriate implementation in Extensions

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2024-11110...

[SECURITY] Fedora 40 Update: python3.6-3.6.15-39.fc40

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

[SECURITY] Fedora 41 Update: python3.6-3.6.15-39.fc41

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

FreeBSD : electron31 -- multiple vulnerabilities (773e7eb2-af19-4fc7-be7f-0f6a2523b98b)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 773e7eb2-af19-4fc7-be7f-0f6a2523b98b advisory. Electron developers report: This update fixes the following vulnerabilities: Tenable has...

[SECURITY] Fedora 41 Update: python3.6-3.6.15-38.fc41

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

[SECURITY] Fedora 40 Update: python3.6-3.6.15-38.fc40

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

New GitLoker-Linked GoIssue Tool Targets GitHub Users for Phishing

SlashNext researchers have discovered a new, sophisticated phishing tool GoIssue targeting GitHub developers. Learn about its capabilities, the…...

New Phishing Tool GoIssue Targets GitHub Developers in Bulk Email Campaigns

Cybersecurity researchers are calling attention to a new sophisticated tool called GoIssue that can be used to send phishing messages at scale targeting GitHub users. The program, first marketed by a threat actor named cyberdluffy aka Cyber D' Luffy on the Runion forum earlier this August, is...

FreeBSD : electron32 -- multiple vulnerabilities (96266fc9-1200-43b5-8393-4c51f54bb7bc)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 96266fc9-1200-43b5-8393-4c51f54bb7bc advisory. Electron developers report: This update fixes the following vulnerabilities: Tenable has...

How To Create a Complete GitHub Backup

The issue of GitHub data protection is increasingly discussed among developers on platforms like Reddit, X, and HackerNews.…...

In the Dark about Shadow APIs?

I’m often asked about shadow APIs and shadow API parameters—even by people with a lot of experience in the API development space...

Linux Kernel Project Drops 11 Russian Developers Amid US Sanctions Concerns

Linux Foundation removes 11 Russian developers from the Linux kernel project due to U.S. sanctions. Linus Torvalds confirms…...

[SECURITY] Fedora 40 Update: python-platformio-6.1.14-7.fc40

PlatformIO is a cross-platform, cross-architecture, multiple framework, professional tool for embedded systems engineers and for software developers who write applications for embedded products...

Online Exam System 访问控制错误漏洞

Online Exam System is an online exam system by oretnom23 individual developers. An access control error vulnerability exists in Online Exam System version 1.0, which stems from improper access control...

Leverage the Power of 45k, free, Hugging Face Models with Spring AI and Ollama

This blog post is co-authored by our great contributor Thomas Vitale. Ollama now supports all GGUF models from Hugging Face , allowing access to over 45,000 community-created models through Spring AI's Ollama integration, runnable locally. We'll explore using this new feature with Spring AI. The...