229 matches found
[SECURITY] Fedora 36 Update: golang-x-exp-0-0.44.20220330git053ad81.fc36
This subrepository holds experimental and deprecated packages. The idea for this subrepository originated as the pkg/exp directory of the ma in repository, but its presence there made it unavailable to users of the binary downloads of the Go installation. The subrepository has therefore been...
Fedora: Security Advisory for golang-x-exp (FEDORA-2022-fae3ecee19)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 36 Update: golang-x-exp-0-0.43.20220330git053ad81.fc36
This subrepository holds experimental and deprecated packages. The idea for this subrepository originated as the pkg/exp directory of the ma in repository, but its presence there made it unavailable to users of the binary downloads of the Go installation. The subrepository has therefore been...
Malicious code in @answers/exp-id-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 545e0ecddd811a8a70c15238204c4eec862dea35cf7e7100ef59fdd4ff3ca9f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-486 Malicious code in @otvetmailru/exp-id-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7169690f4d7848eabe28847feb170485a1579953616f5805c8acdff1c469579a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Exploit for OS Command Injection in Zyxel Usg_Flex_100W_Firmware
CVE-2022-30525 Zyxel Firewall Command Injection Vulnerability...
Fedora: Security Advisory for golang-x-exp (FEDORA-2022-08ae2dd481)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 36 Update: golang-x-exp-0-0.42.20220330git053ad81.fc36
This subrepository holds experimental and deprecated packages. The idea for this subrepository originated as the pkg/exp directory of the ma in repository, but its presence there made it unavailable to users of the binary downloads of the Go installation. The subrepository has therefore been...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Thoughtworks Gocd
CVE-2021-43287 POC: pocsuite -r CVE-2021-43287GoCDfiler...
CVE-2021-41959
JerryScript Git version 14ff5bf does not sufficiently track and release allocated memory via jerry-core/ecma/operations/ecma-regexp-object.c after RegExp, which causes a memory leak...
The vulnerability of the mbedtls_mpi_exp_mod function in implementations of TLS and SSL protocols allows a attacker to cause a service failure.
The vulnerability of the mbedtlsmpiexpmod function in TLS and SSL protocol implementations is related to the lack of data size limitations during calculations. Exploiting this vulnerability allows a remote attacker to cause service failures...
Spring-Spel-0Day-Poc - Spring-Cloud / spring-cloud-function, spring.cloud.function.routing-expression, RCE, 0day, 0-day, POC, EXP
spring-cloud/spring-cloud-function RCE EXP POC https://github.com/spring-cloud/spring-cloud-function header spring.cloud.function.routing-expression:Tjava.lang.Runtime.getRuntime.exec"open -a calculator.app" build wget...
Exploit for Code Injection in Vmware Spring_Cloud_Gateway
CVE-2022-22947RceExp Spring Cloud Gateway 远程代码执行漏洞Exp Spring...
CVE-2021-46477
Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExpconstructor in src/jsiRegexp.c. This vulnerability can lead to a Denial of Service DoS...
Exploit for Path Traversal in Vmware Cloud_Foundation
CVE-2021-22005-metasploit the metasploit scriptPOC/EXP about...
CVE-2021-28627 Adobe Experience Manager Server-side Request Forgery could lead to Security feature bypass
Adobe Experience Manager Cloud Service offering, as well as versions 6.5.8.0 and below is affected by a Server-side Request Forgery. An authenticated attacker could leverage this vulnerability to contact systems blocked by the dispatcher. Exploitation of this issue does not require user interacti...
Cisco Identity Services Engine Sensitive Information Disclosure (cisco-sa-ise-info-exp-8RsuEu8S)
According to its self-reported version, Cisco Identity Services Engine Software is affected by multiple information disclosure vulnerabilities in its admin portal component due to improper enforcement of administrator privilege levels for sensitive data. An authenticated, remote attacker can...
Vulmap - Web Vulnerability Scanning And Verification Tools
Vulmap is a vulnerability scanning tool that can scan for vulnerabilities in Web containers, Web servers, Web middleware, and CMS and other Web programs, and has vulnerability exploitation functions. Relevant testers can use vulmap to detect whether the target has a specific vulnerability, and ca...
openssl: Integer overflow in RSAZ modular exponentiation on x86_64
An integer overflow was found in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. As per upstream: No EC algorithms are affected. Attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...
wannajoparker.exprealty.com Cross Site Scripting vulnerability OBB-1417907
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...