EUVD-2022-25249

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-23485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sentry is an error tracking and performance monitoring platform. In versions of the sentry python library prior to 22.11.0 an attacker with a known valid invite...

Teltonika Remote Management System 安全漏洞

Teltonika Remote Management System is a remote management system used by Teltonika to manage Teltonika products. A security vulnerability exists in Teltonika Remote Management System versions prior to 5.7, which stems from misuse of the invite feature and could lead to account pre-hijacking...

Dropbox Acquisitions: Privilege Escalation at invite feature @hackpad.com

Hey! I would like to report Privilege Escalation @hackpad.com's Invite feature. Description : Hackpad allows admin of the workspace to add/invite users for admin/member/guest etc roles. I can able to grant that access to any one with just one click. Attack Scenario: Lets say you have workspace...