CVE-2018-9477

creationtimestamp| type| source ---|---|--- 2024-11-20 17:35:25+00:00| seen| https://infosec.exchange/users/cve/statuses/113516486661985667 2024-11-20 19:36:29+00:00| seen| https://t.me/cvedetector/11649...

UK PSTI? You’ll need a Vulnerability Disclosure Program!

If you are distributing or selling smart devices in to the UK market, your products will need to be compliant with the UK Product Security and Telecommunications Act. One of the three mandatory areas is that you have a vulnerability disclosure program VDP In the supporting materials for the Act,...

GHSA-22M9-M3WW-53H3 Flarum post mentions can be used to read any post on the forum without access control

Using the mentions feature provided by the flarum/mentions extension, users can mention any post ID on the forum with the special @""p syntax. The following behavior never changes no matter if the actor should be able to read the mentioned post or not: A URL to the mentioned post is inserted into...

CVE-2019-11634 - Improper Access Control Vulnerability in AppDNA

Description of Problem A vulnerability has been identified in AppDNA that could result in access controls not being enforced when accessing the web console potentially allowing privilege escalation and remote code execution. This vulnerability has been assigned the following CVE number: •...