13 matches found
EUVD-2021-33055
Malicious code in bioql PyPI...
UBUNTU-CVE-2025-4035
A flaw was found in libsoup. When handling cookies, libsoup clients mistakenly allow cookies to be set for public suffix domains if the domain contains at least two components and includes an uppercase character. This bypasses public suffix protections and could allow a malicious website to set...
Virtuozzo Hybrid Infrastructure 5.4 Update 3 (5.4.3-100)
In this release, Virtuozzo Hybrid Infrastructure provides a range of new features that cover core storage, the system configuration, updates, documentation, and the compute services. Additionally, this release delivers stability improvements and addresses issues found in previous releases...
CVE-2021-46372
Scoold 1.47.2 is a Q&A/knowledge base platform written in Java. When writing a Q&A, the markdown editor is vulnerable to a XSS attack when using uppercase letters...
CVE-2021-46372
Scoold 1.47.2 is a Q&A/knowledge base platform written in Java. When writing a Q&A, the markdown editor is vulnerable to a XSS attack when using uppercase letters...
CVE-2021-46372
Scoold 1.47.2 is a Q&A/knowledge base platform written in Java. When writing a Q&A, the markdown editor is vulnerable to a XSS attack when using uppercase letters...
GHSA-J5QG-W9JG-3WG3 Inability to de-op players if listed in ops.txt with non-lowercase letters
Impact Originally reported in iTXTech/Genisys1188 txt PotterHarry98 potterharry98 deop PotterHarry98 will remove potterharry98 from the ops.txt but not PotterHarry98. Operator permissions are checked using Config-exists with lowercase=true, which will result in a match:...
GHSA-24M3-W8G9-JWPQ Information disclosure of source code in SimpleSAMLphp
Background The module controller in SimpleSAML\Module that processes requests for pages hosted by modules, has code to identify paths ending with .php and process those as PHP code. If no other suitable way of handling the given path exists it presents the file to the browser. Description The che...
Nested groups with uppercase letters cannot be removed from Confluence, after having been synced initially
h3. Summary Nested groups with uppercase letters cannot be removed from Confluence, after having been synced initially. If you synchronize nested groups with upper case letters into Confluence from Crowd / LDAP, and then update the external directory to remove the child groups, the groups will no...
Nested groups with uppercase letters cannot be removed from Confluence, after having been synced initially
h3. Summary Nested groups with uppercase letters cannot be removed from Confluence, after having been synced initially. If you synchronize nested groups with upper case letters into Confluence from Crowd / LDAP, and then update the external directory to remove the child groups, the groups will no...
[SECURITY] Fedora 20 Update: pwgen-2.07-1.fc20
pwgen generates random, meaningless but pronounceable passwords. These passwords contain either only lowercase letters, or upper and lower case, or upper case, lower case and numeric digits. Upper case letters and numeric digits are placed in a way that eases memorizing the password...
Monitoring of standalone hosts fails
Challenge No topology is created for standalone ESX/ESXi hosts. nworks logs contain the following errors: 0.0017 EXCOL+ VP120 retrieveHostProperties failed, buildMorList: zero count at nworksCore.Collectors.VimUtil.buildMorListList1 nodes at...
mssql hash password cracking method-vulnerability warning-the black bar safety net
mssql hash stored in the table master. dbo. sysxlogins, with select name,password from master. dbo. sysxlogins can extract the user hash. 0x01004E04BE46023057E323AF27269E5b7ddca140c98d225bdd3d06e8efe8cfaec02985b27b38059fa3b18349612b Decomposition: Constant part: 0×0 1 0 0 Salt part: 4E04BE46 Mixi...