7 matches found
ALPINE-CVE-2026-32883
Botan is a C++ cryptography library. From version 3.0.0 to before version 3.11.0, during X509 path validation, OCSP responses were checked for an appropriate status code, but critically omitted verifying the signature of the OCSP response itself. This issue has been patched in version 3.11.0...
PT-2026-28486
Name of the Vulnerable Software and Affected Versions FileRise versions 2.3.7 through 3.10.0 Description FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. The file snippet endpoint /api/file/snippet.php allows an authenticated user with only...
CVE-2025-58025
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in averta Master Slider master-slider allows Stored XSS.This issue affects Master Slider: from n/a through = 3.11.0...
CVE-2025-58025
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in averta Master Slider master-slider allows Stored XSS.This issue affects Master Slider: from n/a through = 3.11.0...
WordPress Master Slider Plugin <= 3.11.0 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Master Slider versions = 3.11.0...
PT-2023-32778 · Github · Github Enterprise Server
Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server versions 3.8 through 3.8.11 GitHub Enterprise Server versions 3.9 through 3.9.6 GitHub Enterprise Server versions 3.10 through 3.10.3 GitHub Enterprise Server versions 3.11 through 3.11.0 Description: A race condition...
PT-2022-14053 · Okta · Okta Active Directory Agent
Name of the Vulnerable Software and Affected Versions: Okta Active Directory Agent versions 3.8.0 through 3.11.0 Description: The issue arises from the Okta Active Directory Agent installing the Okta AD Agent Update Service using an unquoted path, which can lead to privilege escalation...