CVE-2025-11065 Github.com/go-viper/mapstructure/v2: go-viper's mapstructure may leak sensitive information in logs in github.com/go-viper/mapstructure

A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...

Huawei USG9500 IPSec Buffer Overflow Vulnerability

The Huawei USG9500 is a Huawei firewall device. A memory management error exists in the Huawei USG9500 IPSec processing of a message, resulting in a 1-byte out-of-bounds read, which can be exploited by a remote attacker to submit a special request that can crash or restart the application...

What is the hype around Firewall as a Service?

Admit it. Who would not want their firewall maintenance grunt work to go away? For more than 20 years, companies either managed their edge firewall appliances or had service providers rack-and-stack appliances in their data centers and did it for them. This was called a managed firewall — an...

Commons Collections the Java deserialization vulnerability in-depth analysis-vulnerability warning-the black bar safety net

0x01 background This year so far Java the greatest influence on vulnerability than this period of time lasts a fiery CommonsCollections deserialization vulnerability. In 2 0 1 5 year 1 1 May 6, FoxGlove security team@breenmachine published a lengthy blog post, borrowed from Java deserialization,...

Discuz <= 7.2 SQL injection vulnerability details-vulnerability warning-the black bar safety net

Is said to be a digital company of the emergency response to the release out. The group inside the small partners are shocked, the specific vulnerability analysis see this article Wherein the In the senior PHP application vulnerability auditing techniques of1an article in the"magic quotes brought...

Important: Red Hat Security Advisory: JBoss Enterprise BRMS Platform 5.3.1 update

JBoss Enterprise BRMS Platform 5.3.1 roll up patch 1, which fixes two security issues and various bugs, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base...

RHEL 5 / 6 : JBoss Enterprise Application Platform 5.2.0 (RHSA-2013:0257)

The remote Redhat Enterprise Linux 5 / 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2013:0257 advisory. JBoss Enterprise Application Platform is a platform for Java applications, which integrates the JBoss Application Server with JBoss...

Important: Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 security update

An update for JBoss Enterprise Application Platform 5.2.0 which fixes two security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

DedeCMSV53 arbitrary variable overwrite vulnerability-vulnerability warning-the black bar safety net

DedeCMSV53 arbitrary variable overwrite vulnerability See today mrxhming students a articles http://hi.baidu.com/mrxhming/blog/item/8176f00bf540f11795ca6b3f.html find this old BUG hasn't been patched to look like, from the inside of the forum go a pp out of it, everyone is welcome to shoot the...