EUVD-2022-2928

Malicious code in bioql PyPI...

CVE-2024-2462

Allow attackers to intercept or falsify data exchanges between the client and the server...

Potential Risk of Privilege Escalation in Azure AD Applications

Summary Microsoft has developed mitigations for an insecure anti-pattern used in Azure AD AAD applications highlighted by Descope, and reported to Microsoft, where use of the email claim from access tokens for authorization can lead to an escalation of privilege. An attacker can falsify the email...

[ MDVSA-2009:333 ] postgresql

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:333 http://www.mandriva.com/security/ Package : postgresql Date : December 15, 2009 Affected: 2008.0, 2009.0, 2009.1, 2010.0, Corporate 3.0, Corporate 4.0, Enterprise Server 5.0 Problem Description: Multiple...

Snort < 2.8.5 Unified1 Output Denial of Service Exploit

No description provided by source. Advisory: ========= Snort unified 1 IDS Logging Alert Evasion, Logfile Corruption/Alert Falsify Log: ==== 30/06/2009 Bug detected. 20/07/2009 First mail with snort team. 20/07/2009 Snort team answer they will fix it in the next release 2.8.5. 16/09/2009 Snort...

Apache, IIS and other http servers allow by sending a carriage return character forged log-vulnerability warning-the black bar safety net

Description: The majority of the http server receives contains%0d%0a the request resolves to a carriage return and in the log wraps, the use of this A feature can be falsification of logs. Details: Most http servers support-such as%0 0 encoding of request, the main purpose is to provide reliable...