142 matches found
[SECURITY] Fedora 37 Update: rust-sequoia-sop-0.28.0-2.fc37
An implementation of the Stateless OpenPGP Interface using Sequoia...
Vulnerability fixed in MikroTik RouterOS
MikroTik has fixed a vulnerability in RouterOS. A unauthenticated malicious person could potentially abuse it to execute arbitrary code. To do so, malicious network traffic should be sent to the vulnerable device. sent. MikroTik indicates that systems are only vulnerable when they are use a...
[SECURITY] Fedora 37 Update: rust-sequoia-sop-0.26.1-5.fc37
Implementation of the Stateless OpenPGP Interface using Sequoia...
Fedora: Security Advisory for rust-sequoia-sop (FEDORA-2023-c17427d18a)
The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for rust-sequoia-sop (FEDORA-2023-7bd6fbb5fa)
The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Cross-site Scripting in UDX Stateless Media Plugin
A vulnerability was found in UDX Stateless Media Plugin 3.1.1. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The attack can be...
GHSA-9J2P-8QQF-H55C Cross-site Scripting in UDX Stateless Media Plugin
A vulnerability was found in UDX Stateless Media Plugin 3.1.1. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The attack can be...
CVE-2022-4905
A vulnerability was found in UDX Stateless Media Plugin 3.1.1 on WordPress. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The...
Cross site scripting
A vulnerability was found in UDX Stateless Media Plugin 3.1.1 on WordPress. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The...
CVE-2022-4905 UDX Stateless Media Plugin class-settings.php setup_wizard_interface cross site scripting
A vulnerability was found in UDX Stateless Media Plugin 3.1.1 on WordPress. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The...
CVE-2022-4905 UDX Stateless Media Plugin class-settings.php setup_wizard_interface cross site scripting
A vulnerability was found in UDX Stateless Media Plugin 3.1.1 on WordPress. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The...
CVE-2022-4905
CVE-2022-4905 affects the UDX Stateless Media Plugin 3.1.1 for WordPress. The vulnerability resides in the function setup_wizard_interface in lib/classes/class-settings.php, where manipulation of the argument settings leads to cross-site scripting (XSS) . It can be exploited remotely. The recomme...
CVE-2022-4905 UDX Stateless Media Plugin class-settings.php setup_wizard_interface cross site scripting
A vulnerability was found in UDX Stateless Media Plugin 3.1.1 on WordPress. It has been declared as problematic. This vulnerability affects the function setupwizardinterface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross site scripting. The...
PT-2023-15913 · Unknown · Udx Stateless Media Plugin
Name of the Vulnerable Software and Affected Versions: UDX Stateless Media Plugin version 3.1.1 Description: A vulnerability was found in the UDX Stateless Media Plugin. It affects the setup wizard interface function of the file lib/classes/class-settings.php. The manipulation of the settings...
WordPress plugin UDX Stateless Media Plugin 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin UDX Stateless Media Plugin...
CVE-2023-23912
A vulnerability, found in EdgeRouters Version 2.0.9-hotfix.5 and earlier and UniFi Security Gateways USG Version 4.4.56 and earlier with their DHCPv6 prefix delegation set to dhcpv6-stateless or dhcpv6-stateful, allows a malicious actor directly connected to the WAN interface of an affected devic...
com.hcl.commerce:commerce-search-processors (>=9.1.12.0 <=9.1.15.0), org.apache.nifi.minifi:minifi-assembly (>=1.14.0 <=1.28.1) +8 more potentially affected by CVE-2018-1309 via org.apache.nifi:nifi-standard-processors (>=0.2.0-incubating <=1.28.1)
org.apache.nifi:nifi-standard-processors MAVEN version =0.2.0-incubating, =9.1.12.0, =1.14.0, =1.14.0, =1.14.0, =0.2.0-incubating, =1.24.0, =1.15.0, =1.14.0, =0.10.0, =0.10.0, =0.12.0 Source cves: CVE-2018-1309 Source advisory: OSV:GHSA-42WX-65G4-5CXV...
it.agilelab:wasp-spark-nifi-plugin-bridge_2.11 (>=2.27.2 <=2.36.0-cdp719), it.agilelab:wasp-spark-nifi-plugin-bridge_2.12 (>=0.0.0 <=3.1.0-3_5_emr770) +2 more potentially affected by CVE-2020-9486 via org.apache.nifi:nifi-stateless (>=1.10.0 <=1.11.4)
org.apache.nifi:nifi-stateless MAVEN version =1.10.0, =2.27.2, =0.0.0, =1.10.0, =1.11.0, =1.11.4 Source cves: CVE-2020-9486 Source advisory: OSV:GHSA-G644-PR5V-VPPF...
API Securing in 2021 — Top 10 Best Practices
API Securing in 2021📋 — Top 10 Best Practices I love drawing inspiration from real life and todays article is no different. I often get asked the question on how to hack an API but what some people don’t realise is that almost everything is connected to an API these days, even the smart fridges i...
Design/Logic Flaw
An Improper Check for Unusual or Exceptional Conditions in Juniper Networks Junos OS Evolved may cause the stateless firewall filter configuration which uses the action 'policer' in certain combinations with other options to not take effect. An administrator can use the following CLI command to s...