3241 matches found
Connectix Boards 0.5.2 Remote File Inclusion
==================================================================================================================================== | Title : Connectix Boards v0.5.2 RFI Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox 64.0.2 32-bit | |...
Moderate: curl security update
The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: IDN wildcard match may lead to Improper Cerificate Validation CVE-2023-28321 curl: more POST-after-PUT confusion...
Important: Red Hat Security Advisory: Red Hat Virtualization Host 4.4.z SP 1 security update
An update for redhat-release-virtualization-host and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...
CVE-2022-46293
Multiple out-of-bounds write vulnerabilities exist in the translationVectors parsing functionality in multiple supported formats of Open Babel 3.1.1 and master commit 530dbfa3. A specially-crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to...
The vulnerability of the `process_mips_specific` function in the `binutils/readelf.c` component of the GNU Binutils development environment allows a attacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the processmipsspecific function in the binutils/readelf.c component of the GNU Binutils development environment is related to writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and...
Moderate: Red Hat Security Advisory: java-1.8.0-openjdk security update
An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this...
Important: Red Hat Security Advisory: kpatch-patch security update
An update for kpatch-patch-4180-1931001, kpatch-patch-4180-1931051, kpatch-patch-4180-193951, and kpatch-patch-4180-193981 is now available for Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. ...
WordPress DIVI Section Enhancer Plugin <= 2.7.6 is vulnerable to Cross Site Scripting (XSS)
Software DIVI Section Enhancer Type Plugin Vulnerable versions = 2.7.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0cbb951bbfa4 Credits Rafie Muhammad Patchstack...
CVE-2023-36818 Denial of service via User Custom Sidebar Section Unlimited Link Creation in discourse
Discourse is an open source discussion platform. In affected versions a request to create or update custom sidebar section can cause a denial of service. This issue has been patched in commit 52b003d915. Users are advised to upgrade. There are no known workarounds for this vulnerability...
CVE-2023-36818 Denial of service via User Custom Sidebar Section Unlimited Link Creation in discourse
Discourse is an open source discussion platform. In affected versions a request to create or update custom sidebar section can cause a denial of service. This issue has been patched in commit 52b003d915. Users are advised to upgrade. There are no known workarounds for this vulnerability...
Important: Red Hat Security Advisory: firefox security update
An update for firefox is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
KLA50770 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 on-premises can be exploited remotely to spoof user...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
Cross site scripting
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
CVE-2023-36376
Cross-Site Scripting XSS vulnerability in Hostel Management System v.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the add course section...
PT-2023-25561 · Unknown · Hospital Management System
Name of the Vulnerable Software and Affected Versions: Hostel Management System version 2.1 Description: A Cross-Site Scripting XSS issue allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the add course section. Recommendations: For Hostel Management...
CVE-2023-37063
Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the careers & promotions management section...
Of sharks, surveillance, and spied-on emails: This is Section 702, with Matthew Guariglia
In the United States, when the police want to conduct a search on a suspected criminal, they must first obtain a search warrant. It is one of the foundational rights given to US persons under the Constitution, and a concept that has helped create the very idea of a right to privacy at home and...