EUVD-2023-36726

Malicious code in bioql PyPI...

Heritage Foundation Uses Bogus Stat to Push a Trans Terrorism Classification

By inflating numbers and narrowing definitions, Heritage promotes a false link between transgender identity and violence in its push for the FBI to create a new terrorism category...

CVE-2024-10070

A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function actionPolicyPush of the file /com/esafenet/policy/action/PolicyPushControlAction.java. The manipulation of the argument policyId leads to sql injection. It is possible to initiate the attack remotel...

EsafeNet CDG SQL注入漏洞

EsafeNet CDG is a document security management system from EsafeNet. EsafeNet CDG V5 version has a SQL injection vulnerability, which originates from the parameter policyId in the file /com/esafenet/policy/action/PolicyPushControlAction.java, which can lead to SQL injection...

CVE-2023-32482

Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group...

Authorization

Wyse Management Suite versions prior to 4.0 contain an improper authorization vulnerability. An authenticated malicious user with privileged access can push policies to unauthorized tenant group...

CVE-2023-32482

Dell Wyse Management Suite is affected by an improper authorization vulnerability (CVE-2023-32482) where an authenticated user with privileged access can push policies to unauthorized tenant groups. The CVE entry indicates affected software: Wyse Management Suite versions prior to 4.0; the CNVD/D...