Bun security vulnerabilities

Bun is an open-source toolkit developed by Bun developers, designed for use with JavaScript and TypeScript applications. Versions of Bun prior to 1.3.5 contained a security vulnerability. This vulnerability stemmed from the default trusted dependency list being susceptible to being exploited by...

PT-2024-26945 · Freefrom · Freefrom

Name of the Vulnerable Software and Affected Versions: FreeFrom - the nostr client versions prior to 1.3.5 Description: The issue is related to improper verification of cryptographic signatures. This means the affected app cannot detect event data with invalid signatures, potentially allowing...

WordPress plugin Gravity Forms Google Sheet Connector 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

Atlassian Confluence 路径遍历漏洞

Atlassian Confluence is a suite of specialized enterprise knowledge management and collaboration software from Atlassian Australia that can also be used to build an enterprise WiKi. A path traversal vulnerability exists in Atlassian Confluence versions prior to 1.3.5. An attacker can exploit this...

GNU Mailman 访问控制错误漏洞

GNU Mailman is a free suite of software from the GNU community for managing e-mail discussions and e-mail lists. The software integrates with web projects to make it easy for users to manage email subscription accounts and provides built-in archiving, automatic forwarding processing, content...