EUVD-2023-44596

Malicious code in bioql PyPI...

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from deficiencies in the authentication process, which allows a malicious individual to alter the settings of the user interface for project management.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor, operating remotely, to modify the settings of the user interface for project...

CVE-2023-3971

An HTML injection flaw was found in Controller in the user interface settings. This flaw allows an attacker to capture credentials by creating a custom login page by injecting HTML, resulting in a complete compromise...

CVE-2023-3971

The CVE-2023-3971 HTML injection flaw affects Red Hat Ansible Automation Platform’s Automation Controller UI (Controller). The issue allows an attacker to craft a malicious login page to capture credentials, enabling complete compromise per the CVE description. Remediation is in RHSA-2023:4590/RH...

Controller: Html injection in custom login info

An HTML injection flaw was found in Controller in the user interface settings. This flaw allows an attacker to capture credentials by creating a custom login page by injecting HTML, resulting in a complete compromise...