CVE-2022-35358

...

CVE-2022-35356

...

Jenkins Deployment Dashboard信息泄露漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products. jenkins is an application. An open source automation server, Jenkins provides hundreds of plugins to support building, deploying, and automating any project. jenkins Plugin is an application. an information disclosure vulnerability...

parse-url cross-site scripting vulnerability

parse-url is an advanced url parser with git url support. A cross-site scripting vulnerability exists in parse-url versions prior to 7.0.0, which stems from the ability to run malicious JS code using ASCII characters starting with and all special escape characters starting with Unicode, which can...

VICIdial Cross-Site Scripting Vulnerability

Vicidial is a software suite from Vicidial, Inc. Designed to interact with the Asterisk open source Pbx phone system as a complete inbound/outbound contact center suite with inbound email support. A cross-site scripting vulnerability exists in VICIdial versions prior to 2.14b0.5, which stems from...

CVE-2022-35230

An authenticated user can create a link with reflected Javascript code inside it for the graphs page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict...

motolandshop.de Cross Site Scripting vulnerability OBB-2731222

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

HackerOne Fires Employee for Stealing Bug Reports, Collecting Bug Bounties

By Deeba Ahmed Bug bounty and vulnerability coordination platform HackerOne has fired an employee for using their position to access customers… This is a post from HackRead.com Read the original post: HackerOne Fires Employee for Stealing Bug Reports, Collecting Bug Bounties...

Attacker may front-run acceptCounterOffer() cause users to take both original order and new one

Lines of code Vulnerability details Impact Function PuttyV2.acceptCounterOffer is used in case users see better deal and want to cancel their own order before filling the new one. But attacker can abuse this function by front-run calling fillOrder before it is cancelled in acceptCounterOffer...

OSV-2022-529 Heap-buffer-overflow in init_mt

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48609 Crash type: Heap-buffer-overflow WRITE Crash state: initmt vp9decodeframe vp9receivecompresseddata...

File Protocol Spoofing

Description parse-url misinterpreting the file:// protocol when trying to match git urls. The following payload is certainly valid file protocol but is interpreted as ssh protocol. file:///etc/passwd?http://a:1:1 Proof of Concept // PoC.js const fs = require'fs'; var parseURL = require"parse-url"...

Adobe Illustrator Out-of-Bounds Reading Vulnerability (CNVD-2022-50223)

Adobe Illustrator, a vector-based image creation software from Adobe, is vulnerable to an out-of-bounds read vulnerability. An attacker could exploit this vulnerability to cause a sensitive memory leak...

Arbitrary file deletion

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php...

GSD-2022-1003729 RDMA/hfi1: Fix potential integer multiplication overflow errors

RDMA/hfi1: Fix potential integer multiplication overflow errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...

GSD-2022-1003646 dm crypt: make printing of the key constant-time

dm crypt: make printing of the key constant-time This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.120 by commit...

GSD-2022-1003516 net: xfrm: unexport __init-annotated xfrm4_protocol_init()

net: xfrm: unexport init-annotated xfrm4protocolinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.122 by commit...

GSD-2022-1003452 KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak

KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.45 by commit...

GSD-2022-1003432 dm stats: add cond_resched when looping over entries

dm stats: add condresched when looping over entries This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.45 by commit...

GSD-2022-1002717 ARM: hisi: Add missing of_node_put after of_find_compatible_node

ARM: hisi: Add missing ofnodeput after offindcompatiblenode This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...

Cloudflare Public Bug Bounty: Basic XSS [WAF Bypasses]

Vulnerability description not provided...