GHSA-PV7H-HX5H-MGFJ Unsafe deserialization in com.alibaba:fastjson

The package com.alibaba:fastjson before 1.2.83 is vulnerable to Deserialization of Untrusted Data by bypassing the default autoType shutdown restrictions, which is possible under certain conditions. Exploiting this vulnerability allows attacking remote servers. Workaround: If upgrading is not...

osCommerce 2.2ms1 Multiple Script XSS

osCommerce is a widely installed open source shopping e-commerce solution. An attacker may use it to perform a cross-site scripting attack on this host. %NASLMINLEVEL 70300 written by K-Otik.com osCommerce Cross Site Scripting Bugs Ref added by rd : Message-ID: From: Daniel Alcantara de la Hoz To...