bit-docs-generate-html (>=0.0.1 <=0.7.1), bit-docs-generate-searchmap (>=0.0.1-0 <=0.2.0-pre.3) +5 more potentially affected by CVE-2021-23429 via transpile (>=0.9.7 <=2.4.0-pre.0)

transpile NPM version =0.9.7, =0.0.1, =0.0.1-0, =0.5.0, =5.0.0, =0.16.6, =1.4.0-pre.1 Source cves: CVE-2021-23429 Source advisory: OSV:GHSA-7XRJ-F5RP-J55H...

SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2021:2790-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2790-1 advisory. - Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory...

Google Docs Scams Still Pose a Threat

A 2017 worm caused havoc across the internet. One researcher is warning that despite new protections put in place, it could still happen again...

CheckMK management web console cross-site scripting vulnerability

CheckMK management web console is an application. Based on Asciidoctor and automatically available on HTML docs.checkmk.com. CheckMK management web console suffers from a cross-site scripting vulnerability that could be exploited by attackers to open a backdoor on the device using HTML content...

Description of the security update for SharePoint Enterprise Server 2016: July 13, 2021 (KB5001976)

Description of the security update for SharePoint Enterprise Server 2016: July 13, 2021 KB5001976 Summary This security update resolves a Microsoft SharePoint Server spoofing vulnerability, SharePoint Server information disclosure vulnerability, and SharePoint Server remote code execution...

XSS Vulnerability in Xunfei Documents of KUDA Xunfei Co.

Xunfei Documents is an online document app produced by KUDA Xunfei that supports simultaneous editing by multiple people and multiple ends. A XSS vulnerability exists in Xunfei Document of KUDA Xunfei Corporation, which can be exploited by an attacker to obtain an administrator cookie...

Threat actors using Google Docs exploit to spread phishing links

By Habiba Rashid Cybercriminals have started employing a new phishing attack that abuses the popularity of Google Drive and Docs to bypass security filters. This is a post from HackRead.com Read the original post: Threat actors using Google Docs exploit to spread phishing links...

Threat Actors Use Google Docs to Host Phishing Attacks

Threat actors are exploiting Google Docs by hosting their attacks within the web-based document service in a new phishing campaign that delivers malicious links aimed at stealing victims’ credentials. Researchers at email and collaboration security firm Avanan discovered the campaign, which is th...

XSS vulnerability in graphite documents

Graphite Docs is an enterprise office service software that supports real-time collaboration in the cloud features analogous to Google Docs, Quip. A XSS vulnerability exists in Graphite Documents. Attackers can use this vulnerability to obtain sensitive information such as user cookies...

Google Workspace Now Offers Client-side Encryption For Drive and Docs

Google on Monday announced that it's rolling out client-side encryption to Google Workspace formerly G Suite, thereby giving its enterprise customers direct control of encryption keys and the identity service they choose to access those keys. "With client-side encryption, customer data is...

XSS Vulnerability in Cyberdrive Documents

Xunfei Documents is an online document app produced by KUDA Xunfei that supports multiple people editing at the same time on multiple devices, such as computers, mobile phones, tablets, and other types of devices to view and modify documents anytime, anywhere, and easily improve work efficiency...

CVE-2020-25634

A flaw was found in Red Hat 3scale’s API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scale-2.10.0-ER1 are affected...

Design/Logic Flaw

A flaw was found in Red Hat 3scale’s API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scale-2.10.0-ER1 are affected...

CVE-2020-25634

A flaw was found in Red Hat 3scale’s API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scale-2.10.0-ER1 are affected...

@blueprintjs/docs (>=1.0.0 <=1.3.1), @frctl/twig (>=1.0.0-alpha.0 <=1.0.0-beta.2) +101 more potentially affected by CVE-2020-7700 via phpjs (>=0.0.1 <=1.3.2)

phpjs NPM version =0.0.1, =1.0.0, =1.0.0-alpha.0, =0.3.16, =1.2.7, =0.1.3, =1.0.1, =1.0.0, =0.7.0, =0.0.1, =0.0.9, =0.0.1-alpha.1, =0.0.1, =0.0.7 and more Source cves: CVE-2020-7700 Source advisory: OSV:GHSA-M428-JQC4-2P5J...

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2021:1430-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.32.0 bsc1184155 : - Fix the authentication request port when URL omits the port. - Fix iframe scrolling when main frame is scrolled in async - scrolling mode. - Stop using gmemdup. - Show a warning message when overridin...

Fedora: Security Advisory for python3-docs (FEDORA-2021-0a8f3ffbc0)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for python3-docs (FEDORA-2021-067c9deff1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for python3-docs (FEDORA-2021-b6b6093b3a)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 33 Update: python3-docs-3.9.4-1.fc33

The python3-docs package contains documentation on the Python 3 programming language and interpreter...