11967 matches found
Apple and Google Join Forces to Stop Unauthorized Location-Tracking Devices
Apple and Google have teamed up to work on a draft industry-wide specification that's designed to tackle safety risks and alert users when they are being tracked without their knowledge or permission using devices like AirTags. "The first-of-its-kind specification will allow Bluetooth...
Six steps to prepare your application security team for a penetration test
This blog post will show step-by-step how an application security team should prepare for a penetration test...
Invalid addresses will be accepted as resolvers, possibly bricking assets
Lines of code Vulnerability details Description The hexToAddress utility parses a string into an address type. function hexToAddress bytes memory str, uint256 idx, uint256 lastIdx internal pure returns address, bool if lastIdx - idx 40 return address0x0, false; bytes32 r, bool valid =...
Design/Logic Flaw
Payload is a free and open source headless content management system. In versions prior to 1.7.0, if a user has access to documents that contain hidden fields or fields they do not have access to, the user could reverse-engineer those values via brute force. Version 1.7.0 contains a patch. As a...
Node.js: Process-based permissions can be bypassed with the "inspector" module.
Process-based permissions in Node.js can be bypassed using the built-in inspector module, allowing an attacker to access restricted resources...
MAL-2023-1079 Malicious code in @expressions/excel-functions (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0f285f6202227757b1ae10391ea069ae841e5b19a58529e5ce7b0f0a37e48c91 The OpenSSF Package Analysis project identified '@expressions/excel-functions' @ 3.0.0 npm as malicious. It is considered malicious because: - T...
CVE-2023-30842
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-25313. Reason: This candidate is a reservation duplicate of CVE-2023-25313. Notes: All CVE users should reference CVE-2023-25313 instead of this candidate. All references and descriptions in this candidate have been removed t...
Windows/x64 - Delete File shellcode / Dynamic PEB method null-free Shellcode
; Name: Windows/x64 - Delete File shellcode / Dynamic PEB method null-free Shellcode ; Author: Nayani ; Tested on: Microsoft Windows Version 10.0.22621 Build 22621 ; Description: ; This an implementation of DeleteFileA Windows api to delete a file in the C:/Windows/Temp/ directory. ; To test this...
Oracle Business Intelligence Enterprise Edition (Apr 2023 CPU)
The versions of Oracle Business Intelligence Enterprise Edition OBIEE installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory. - A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity...
Exploit for SQL Injection in Jeecg Jeecg-Boot
CVE-2023-1454 jmreport/qurestSql – Unauthorized SQL inject...
Design/Logic Flaw
An issue was discovered in ONOS 2.5.1. An intent with a large port number shows the CORRUPT state, which is misleading to a network operator. Improper handling of such port numbers causes inconsistency between intent and flow rules in the network...
chatwoot Cross-Site Scripting Vulnerability (CNVD-2023-29696)
chatwoot is an application. Customer Engagement Suite, an open source alternative to intercom, Zendesk, Salesforce Service Cloud, etc. A cross-site scripting vulnerability exists in chatwoot versions prior to 2.14.0. The vulnerability stems from the application's lack of effective filtering and...
ActiveCampaign < 8.1.12 - Contributor+ Stored XSS
The plugin does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks PoC As a contributor, add a "AC Forms" Gutenberg block ...
Lack of validation in opening positions parameters can lead to critical vulnerabilities at protocol level
Lines of code Vulnerability details Suspicious positions may be denied by voters if they don't seem legit, but over time it is very possible that one of them lands in the protocol, which can involve serious risks. Some attributes may not seem harmful with certain values at first sight, and can le...
CVE-2023-21991
...
CVE-2023-21984
...
CVE-2023-21978
...
CVE-2023-21963
...
CVE-2023-21955
...
CVE-2023-21938
...