Drupal OAuth2 Client 跨站请求伪造漏洞

Drupal OAuth2 Client is an identity module for the Drupal community. A cross-site request forgery vulnerability exists in Drupal OAuth2 Client versions prior to 4.1.3 that stems from cross-site request forgery...

PT-2023-7472 · Unknown · Google-Translate-Api-Browser

Name of the Vulnerable Software and Affected Versions: google-translate-api-browser versions prior to 4.1.3 Description: A Server-Side Request Forgery SSRF issue is present in applications utilizing the google-translate-api-browser package and exposing the translateOptions to the end user. An...

Redmine 信息泄露漏洞

Redmine is a set of open source Web-based project management and defect tracking tools . The product provides features such as project management, issue tracking and role-based access control. An information disclosure vulnerability exists in Redmine versions prior to 4.0.9 and 4.1.x series...

CVE-2015-9056

Kibana versions prior to 4.1.3 and 4.2.1 are vulnerable to a XSS attack...