EUVD-2024-1962

Malicious code in bioql PyPI...

CVE-2023-0403

The Social Warfare plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.3.1. This is due to missing or incorrect nonce validation on several AJAX actions. This makes it possible for unauthenticated attackers to delete post meta information and reset...

Common 安全漏洞

NIMBLE Platform Common is a common module package that can be accessed by NIMBLE services. A security vulnerability exists in Common that stems from an incorrectly validated JSON network token. An attacker could use this vulnerability to forge a valid JWT, which could lead to an authentication...

Unspecified Vulnerability in Xmidt cjwt

Xmidt cjwt is a JSON network token implementation written in C . A security vulnerability exists in Xmidt cjwt 1.0.1 and earlier versions prior to 2019-11-25 that can be exploited by an attacker to cause an untrusted and unexpected JWT acceptance...

Microsoft Windows 10 - SSPI Network Authentication Session 0 Privilege Escalation

Windows: SSPI Network Authentication Session 0 EoP Platform: Windows 10 1803/1809 not tested earlier versions Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: Session boundary Summary: Performing an NTLM authentication to the same machine results in a network...