666 matches found
a10-octavia (>=0.1.0.dev384 <=2.2.0), a2 (=0.8.4) +1988 more potentially affected by CVE-2024-42353 via webob (>=1.2.3 <=1.8.7)
webob PYPI version =1.2.3, =0.1.0.dev384, =1.0.0, =0.0.1, =2026.4.17, =0.0.2, =1.2.0, =1.0.0, =0.18.0, =0.3.0, =0.2.1, =0.5.0, =2.0.0, =3.12.0 and more Source cves: CVE-2024-42353 Source advisory: OSV:PYSEC-2024-188...
CVE-2024-5828 EL Injection Vulnerability in Hitachi Tuning Manager
Expression Language Injection vulnerability in Hitachi Tuning Manager on Windows, Linux, Solaris allows Code Injection.This issue affects Hitachi Tuning Manager: before 8.8.7-00...
CVE-2024-35755
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in El tiempo Weather Widget Pro allows Stored XSS.This issue affects Weather Widget Pro: from n/a through 1.1.40...
CVE-2024-35755 WordPress Weather Widget Pro plugin <= 1.1.40 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in El tiempo Weather Widget Pro allows Stored XSS.This issue affects Weather Widget Pro: from n/a through 1.1.40...
CVE-2024-35755
CVE-2024-35755 is an authenticated stored XSS in Weather Widget Pro for WordPress. Affected: Weather Widget Pro, versions up to 1.1.40. Root cause: Improper input neutralization during web page generation. Impact: Stored payloads could execute in pages viewed by users. Public patch status not det...
el-market.cz Cross Site Scripting vulnerability OBB-3882834
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-market.cz Cross Site Scripting vulnerability OBB-3876592
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-design.cz Cross Site Scripting vulnerability OBB-3872580
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
AZL-59471 CVE-2023-52481 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Add Cortex-A520 speculative unprivileged load workaround Implement the workaround for ARM Cortex-A520 erratum 2966298. On an affected Cortex-A520 core, a speculatively executed unprivileged load might leak data fro...
EL Injection Vulnerability in Hitachi Global Link Manager
Overview An EL Injection Vulnerability CVE-2024-0715 exists in Hitachi Global Link Manager. Affected products and versions are listed below. Please upgrade your version to the appropriate version. Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Plea...
CVE-2024-0715 EL Injection Vulnerability in Hitachi Global Link Manager
Expression Language Injection vulnerability in Hitachi Global Link Manager on Windows allows Code Injection.This issue affects Hitachi Global Link Manager: before 8.8.7-03...
Israeli El Al Alleges Hackers Targeted Flights in Mid-Air Hijack Attempt
By Deeba Ahmed The aircraft was reportedly flying over an area inhabited by Iranian-backed Houthis. This is a post from HackRead.com Read the original post: Israeli El Al Alleges Hackers Targeted Flights in Mid-Air Hijack Attempt...
el-espacio.es Improper Access Control vulnerability OBB-3821864
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-roi.de Improper Access Control vulnerability OBB-3816651
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-cadoro.de Improper Access Control vulnerability OBB-3816620
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-molino.com Improper Access Control vulnerability OBB-3798179
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-mec.com Improper Access Control vulnerability OBB-3798175
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-principito.com.ar Improper Access Control vulnerability OBB-3779692
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
el-roi.de Improper Access Control vulnerability OBB-3770360
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Amazon Linux 2023 : tomcat9, tomcat9-admin-webapps, tomcat9-el-3.0-api (ALAS2023-2023-390)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-390 advisory. The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...