262 matches found
home-dry.ch Cross Site Scripting vulnerability OBB-3343425
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
[SECURITY] Fedora 37 Update: python-django3-3.2.19-1.fc37
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
Fedora: Security Advisory for python-django3 (FEDORA-2023-0d20d09f2d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: python-django3-3.2.19-1.fc38
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
Fedora: Security Advisory for python-django (FEDORA-2023-a53ab7c969)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: python-django-4.0.10-1.fc38
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 37 Update: python-django-4.0.10-1.fc37
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 38 Update: python-django3-3.2.18-1.fc38
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 37 Update: python-django3-3.2.18-1.fc37
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
[SECURITY] Fedora 36 Update: python-django3-3.2.18-1.fc36
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...
SUSE CVE-2017-1000103
The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view...
org.jenkins-ci.plugins:php (=1.0) potentially affected by CVE-2017-1000103 via org.jvnet.hudson.plugins:dry (=2.33)
org.jvnet.hudson.plugins:dry MAVEN version =2.33 is affected by a known vulnerability. The following packages have a transitive dependency on org.jvnet.hudson.plugins:dry and may be impacted: - org.jenkins-ci.plugins:php =1.0 Source cves: CVE-2017-1000103 Source advisory: OSV:GHSA-63CJ-3R94-234V...
GHSA-63CJ-3R94-234V Persistent XSS vulnerability in Jenkins DRY Plugin
The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view...
Persistent XSS vulnerability in Jenkins DRY Plugin
The custom Details view of the Static Analysis Utilities based DRY Plugin, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to this plugin could insert arbitrary HTML into this view...
org.jenkins-ci.plugins:php (=1.0) potentially affected by CVE-2018-1000010 via org.jvnet.hudson.plugins:dry (=2.33)
org.jvnet.hudson.plugins:dry MAVEN version =2.33 is affected by a known vulnerability. The following packages have a transitive dependency on org.jvnet.hudson.plugins:dry and may be impacted: - org.jenkins-ci.plugins:php =1.0 Source cves: CVE-2018-1000010 Source advisory: OSV:GHSA-X7QF-QH3R-MX22...
GHSA-X7QF-QH3R-MX22 XXE vulnerability in Jenkins DRY Plugin
Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks...
XXE vulnerability in Jenkins DRY Plugin
Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jenkins master, perform server-side request forgery, or denial-of-service attacks...
ai.databand.azkaban:azkaban-common (=3.18.0), ai.databand.azkaban:azkaban-exec-server (=3.18.0) +2384 more potentially affected by CVE-2017-3523 via mysql:mysql-connector-java (>=3.0.10 <=5.1.40)
mysql:mysql-connector-java MAVEN version =3.0.10, =1.0.0, =1.1.5.RELEASE, =1.0.1, =0.0.1, =0.3.0, =0.2.0, =0.2.0, =0.4.1 and more Source cves: CVE-2017-3523 Source advisory: OSV:GHSA-2XXH-F8R3-HVVR...
Exploit for Out-of-bounds Write in Polkit_Project Polkit
This repository is a proof-of-concept PoC exploit for CVE-2021-4034, a vulnerability in the polkit privilege escalation exploit. The exploit is implemented in C and uses the execve system call to execute a shell with elevated privileges. The vulnerability is related to the way polkit handles user...
[SECURITY] Fedora 35 Update: python-django-3.2.12-1.fc35
Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...