13 matches found
EUVD-2019-0781
Malware in sbrugna...
EUVD-2022-6865
Malicious code in bioql PyPI...
EUVD-2023-42179
Malicious code in bioql PyPI...
PT-2025-32001
Name of the Vulnerable Software and Affected Versions ModSecurity versions 2.9.11 and below Description ModSecurity is a web application firewall engine for Apache, IIS, and Nginx. An attacker can override the HTTP response’s Content-Type, potentially leading to issues such as cross-site scriptin...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 : RESTEasy vulnerabilities (USN-7630-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7630-1 advisory. It was discovered that RESTEasy made insufficient use of random values in asynchronous jobs. An...
CVE-2024-3145
A vulnerability was found in DedeCMS 5.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /src/dede/makehtmljsaction.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to...
Alibaba Cloud Linux 3 : 0226: grafana (ALINUX3-SA-2024:0226)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0226 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-24791: The net/http HTTP/1.1 client...
Moodle 4.0.x < 4.0.12 Multiple Vulnerabilities
According to its self-reported version, the Moodle install hosted on the remote host is prior to 3.9.25 / 3.11.x prior to 3.11.18 / 4.0.x prior to 4.0.12 / 4.1.x prior to 4.1.7 / 4.2.x prior to 4.2.4. It is, therefore, affected by multiple vulnerabilities: - XSS risk when manually running a task ...
Laravel Starter Security Vulnerability
Laravel Starter is a simple starter project based on Laravel 11.x by Nasir Khan Saikat individual developer. A security vulnerability exists in Laravel Starter version 11.8.0 and earlier versions, which stems from an incorrect manipulation of the parameter Email that results in response...
OPENSUSE-SU-2022:10171-1 Security update for pdns-recursor
This update for pdns-recursor fixes the following issues: pdns-recursor was updated to 4.6.3: fixes incomplete exception handling related to protobuf message generation boo1202664, CVE-2022-37428 pdns-recursor was updated to 4.6.2: Reject non-apex NSEC3s that have both the NS and SOA bits set A...
Authorization
When APM 13.0.0-13.1.x is deployed as an OAuth Resource Server, APM becomes a client application to an external OAuth authorization server. In certain cases when communication between the BIG-IP APM and the OAuth authorization server is lost, APM may not display the intended message in the failur...
mIRC DCC Server Security Flaw
Good afternoon, There is an error in the impmelentation of the mIRC DCC server protocol. This venerability allows an attacker to obtain: 1 The victim's nickname. 2 Whether or not the victim is ignoring the attackers requests for a direct connection. 3 Information regarding the number of IRC serve...
DoS против ColdFusion
При превышении максимального числа одновременных обращений к кэшированной странице сервера сервер перестанет отвечать на запросы клиента...