PT-2021-22418 · Discourse · Discourse

Name of the Vulnerable Software and Affected Versions: Discourse versions prior to the latest stable, beta and tests-passed versions Description: The issue allows category names to be used for Cross-site scripting XSS attacks. This is mitigated by Discourse's default Content Security Policy, and...

libxml2 - xmlDictAddString Heap Buffer Overread

Source: https://code.google.com/p/google-security-research/issues/detail?id=637 The following crash due to a heap-based out-of-bounds memory read can be observed in an ASAN build of latest stable libxml2 2.9.3, released 4 days ago, by feeding a malformed file to xmllint "$ ./xmllint --html...

libxml2 - xmlParseEndTag2 Heap Buffer Overread

libxml2 - xmlParseEndTag2 Heap Buffer Overread Source: https://code.google.com/p/google-security-research/issues/detail?id=638 The following crash due to a heap-based out-of-bounds memory read can be observed in an ASAN build of latest stable libxml2 2.9.3, released 4 days ago, by feeding a...

Mandriva Update for openssl0.9.8 MDVSA-2011:173 (openssl0.9.8)

Check for the Version of openssl0.9.8 OpenVAS Vulnerability Test Mandriva Update for openssl0.9.8 MDVSA-2011:173 openssl0.9.8 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

mkportal-sql.txt

?php / i MkPortal "reviews" and "gallery" modules SQL Injection Exploit i Vulnerable versions: MkPortal = 1.1.1 i Bug discovered by: Coloss i Exploit by: Coloss i Date: 06.07.2007 i This is priv8 not for kids Notes At this time MkPortal 1.1.1 is the latest stable release Currently implemented:...