Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Robert Schulz sprd.Net AG Spreadshop plugin = 1.6.5 versions...

CVE-2023-29426

CVE-2023-29426 is a CSRF vulnerability in the Spreadshop WordPress plugin (Spreadshop) <= 1.6.5, with unauthenticated exploit potential. The associated Red Hat and NVD entries confirm Cross-Site Request Forgery as the issue, rated High (NVD CVSS 3.1: 8.8). Public material shows a patch fix: up...

CVE-2023-46733: Possible session fixation

Affected versions Symfony versions =5.4.21, 5.4.31, and = 6.2.7, 6.3.8 of the Symfony Security HTTP component are affected by this security issue. The issue has been fixed in Symfony 5.4.31, 6.3.8. Description SessionStrategyListener does not always migrate the session after a successful login. I...

CVE-2023-29441

The CVE-2023-29441 entry covers an unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability in the WebLibrarian WordPress plugin. Affected versions are WebLibrarian <= 3.5.8.1 (with later notes/applications showing coverage up to

GHSA-WQC8-X2PR-7JQH RestrictedPython vulnerable to arbitrary code execution via stack frame sandbox escape

Impact RestrictedPython does not check access to stack frames and their attributes. Stack frames are accessible within at least generators and generator expressions, which are allowed inside RestrictedPython. An attacker with access to a RestrictedPython environment can write code that gets the...

WordPress MainWP Child Plugin <= 4.4.1.1 is vulnerable to Sensitive Data Exposure

Software MainWP Child Type Plugin Vulnerable versions = 4.4.1.1 Fixed in 4.4.1.2 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-3132 Patch priority Low CVSS severity Low 7.5 Developer MainWP PSID 45016589de2f Credits Robert Lockwood Required privilege...

CVE-2023-22720

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Robert Macchi WP Links Page plugin = 4.9.3 versions...

CVE-2023-22720

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Robert Macchi WP Links Page plugin = 4.9.3 versions...

CVE-2023-22720 WordPress WP Links Page Plugin <= 4.9.3 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Robert Macchi WP Links Page plugin = 4.9.3 versions...

CVE-2023-22720

CVE-2023-22720 affects the WordPress plugin WP Links Page by Robert Macchi. Versions ≤ 4.9.3 are vulnerable to a Stored XSS due to inadequate input handling. The vulnerability impact is described in the CVE as cross-site scripting, with a PatchSTACK entry noting the fix in version 4.9.4 . No expl...

robert-betz-shop.de Cross Site Scripting vulnerability OBB-3277206

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

robertgarybuilders.com Cross Site Scripting vulnerability OBB-3238032

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

SUSE CVE-2021-38093

Integer Overflow vulnerability in function filterrobert in libavfilter/vfconvolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...

robertclifford.uk Cross Site Scripting vulnerability OBB-3137518

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

robert-rausch.de Cross Site Scripting vulnerability OBB-2336854

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

DEBIAN-CVE-2021-38093

Integer Overflow vulnerability in function filterrobert in libavfilter/vfconvolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...

UBUNTU-CVE-2021-38093

Integer Overflow vulnerability in function filterrobert in libavfilter/vfconvolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...

[Security Nation] How Robert Black Wards Off Cyber-Attackers with Deception Techniques

!\Security Nation\ How Robert Black Wards Off Cyber-Attackers with Deception Techniqueshttps://blog.rapid7.com/content/images/2021/05/securitynationlogo-2.jpg In our latest episode of Security Nation, we talk with Robert Black, Deputy Director of the UK National Cyber Deception Lab, about his wor...

robert-janin.com Cross Site Scripting vulnerability OBB-1404909

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

robertcasadesus.com Cross Site Scripting vulnerability OBB-1254291

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...