RHSA-2024:4430 Red Hat Security Advisory: perl-HTTP-Tiny security update

Bulletin has no description...

RHSA-2024:0579 Red Hat Security Advisory: perl-HTTP-Tiny security update

Bulletin has no description...

RHSA-2024:0422 Red Hat Security Advisory: perl-HTTP-Tiny security update

Bulletin has no description...

RHSA-2023:7174 Red Hat Security Advisory: perl-HTTP-Tiny security update

Bulletin has no description...

RHSA-2023:6542 Red Hat Security Advisory: perl-HTTP-Tiny security update

Bulletin has no description...

NewStart CGSL MAIN 6.02 : perl-HTTP-Tiny Multiple Vulnerabilities (NS-SA-2024-0058)

The remote NewStart CGSL host, running version MAIN 6.02, has perl-HTTP-Tiny packages installed that are affected by multiple vulnerabilities: - It was found that perl can load modules from the current directory if not found in the module directories, via the @INC path. A local, authenticated...

Advisory ROSA-SA-2024-2471

software: perl 5.30.3 OS: ROSA-CHROME packageevrstring: perl-5.30.3-22 CVE-ID: CVE-2021-36770 BDU-ID: 2021-05374 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Encode.pm module of the Perl programming language interpreter is related to incorrect search path handling. Exploitation of the...

Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control

Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of the appliances and evade detection. The activity, attributed to Velvet Ant, was observed early this year and involved the...

Huawei EulerOS: Security Advisory for perl-HTTP-Tiny (EulerOS-SA-2024-2289)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Exploit for Special Element Injection in Google Android

CVE 2024 0044 CVE-2024-0044, identified in the createSessionI...

RHEL 9 : perl-HTTP-Tiny (RHSA-2024:4430)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:4430 advisory. HTTP::Tiny is a small and simple HTTP/1.1 client written in Perl. Security Fixes: http-tiny: insecure TLS cert default CVE-2023-31486 For more detail...

Moderate: Red Hat Security Advisory: perl-HTTP-Tiny security update

An update for perl-HTTP-Tiny is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

http-tiny: perl: insecure TLS cert default

A vulnerability was found in Tiny, where a Perl core module and standalone CPAN package, does not verify TLS certificates by default. Users need to explicitly enable certificate verification with the verifySSL=1 flag to ensure secure HTTPS connections. This oversight can potentially expose...

Malicious code in gradient-tiny (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 072e069157bae3a21204a965538030cd1d107c5a79c9574cc9b663c06225b36a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1673 Malicious code in gradient-tiny (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 072e069157bae3a21204a965538030cd1d107c5a79c9574cc9b663c06225b36a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Tiny Technologies TinyMCE Security Vulnerability

Tiny Technologies TinyMCE is a rich text editor from Tiny Technologies, USA. A security vulnerability exists in TinyMCE that stems from the presence of a cross-site scripting XSS vulnerability...

Tiny Technologies TinyMCE Security Vulnerability

Tiny Technologies TinyMCE is a rich text editor from Tiny Technologies, USA. A security vulnerability exists in Tiny Technologies TinyMCE that stems from the presence of a cross-site scripting XSS vulnerability that allows execution of malicious code when loading content into the editor...

PT-2024-5043

Name of the Vulnerable Software and Affected Versions: TinyMCE versions prior to 5.11.0 LTS TinyMCE versions prior to 6.8.4 TinyMCE versions prior to 7.2.0 Description: A cross-site scripting XSS vulnerability was discovered in TinyMCE’s content extraction code. When using the noneditable regexp...

Exploit for Special Element Injection in Google Android

CVE 2024 0044 CVE-2024-0044, identified in the createSessionI...

OPENSUSE-SU-2024:13034-1 perl-HTTP-Tiny-0.086-1.1 on GA media

These are all security issues fixed in the perl-HTTP-Tiny-0.086-1.1 package on the GA media of openSUSE Tumbleweed...