CVE-2018-4852

A vulnerability has been identified in SICLOCK TC100 All versions and SICLOCK TC400 All versions. An attacker with network access to the device could potentially circumvent the authentication mechanism if he/she is able to obtain certain knowledge specific to the attacked device...

Micali-Schnorr Generator (MS-DRBG) Part III - Zero Knowledge Proof Wanted!!

See also Part I and Part II of this series This is going to be a short blog post about the infamous Micali-Schnorr Random Number Generator MS-DRBG. See Part I and Part II of this series for more information about this topic. WHO: NIST published the specification for Micali-Schnorr Random Number...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Airbnb Knowledge Repo Cross-Site Scripting Vulnerability

Airbnb Knowledge Repo is a suite of knowledge sharing platforms. The platform supports features such as data storage and utility management. A cross-site scripting vulnerability exists in Airbnb Knowledge Repo version 0.7.4. A remote attacker can exploit this vulnerability to inject arbitrary web...

CVE-2018-12588

Cross-site scripting XSS vulnerability in templates/frontend/pages/searchResults.tpl in Public Knowledge Project PKP Open Monograph Press OMP v1.2.0 through 3.1.1-2 before 3.1.1-3 allows remote attackers to inject arbitrary web script or HTML via the catalog.noTitlesSearch parameter aka the Searc...

CVE-2018-12588

Cross-site scripting XSS vulnerability in templates/frontend/pages/searchResults.tpl in Public Knowledge Project PKP Open Monograph Press OMP v1.2.0 through 3.1.1-2 before 3.1.1-3 allows remote attackers to inject arbitrary web script or HTML via the catalog.noTitlesSearch parameter aka the Searc...

Security update 2018-06-19

...

PYSEC-2018-116

Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...

CVE-2018-12104

Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...

Cross site scripting

Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...

PYSEC-2018-116

Cross-site scripting XSS vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the post/posts/newreport.kp URI...

CVE-2018-12104

Airbnb Knowledge Repo 0.7.4 is reported vulnerable to Cross-site Scripting (XSS) via the post comments functionality (post/posts/new_report.kp). The root cause is improper input validation in the comments feature, as cited by Veracode (improper user input validation) and OSV entries noting the is...

Public Knowledge Project Open Journal System Cross-Site Scripting Vulnerability

Public Knowledge Project PKP Open Journal System OJS is a journal management and publishing system. A cross-site scripting vulnerability exists in PKP OJS version 3.X prior to 3.1.1-2, which stems from the program failing to escape the '$authors' parameter. A remote attacker can use the '$authors...

2018-06 Security Monthly Quality Rollup for Windows Embedded 8 Standard for x64-based Systems (KB4284855)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2018-06 Cumulative Update for Windows 10 Version 1507 for x64-based Systems (KB4284860)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2018-06 Security Monthly Quality Rollup for Windows Embedded 8 Standard for x86-based Systems (KB4284855)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2018-06 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4284819)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2018-06 Cumulative Update for Windows 10 Version 1803 for ARM64-based Systems (KB4284835)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2018-06 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB4284880)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2018-06 Cumulative Update for Windows Server 2016 (1709) for x64-based Systems (KB4284819)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...