[SECURITY] Fedora 39 Update: jupyterlab-4.0.11-1.fc39

JupyterLab is the next-generation user interface for Project Jupyter offering all the familiar building blocks of the classic Jupyter Notebook notebook, terminal, text editor, file browser, rich outputs, etc. in a flexible and powerful user interface...

IBM Tivoli Application Dependency Discovery Manager 跨站脚本漏洞

IBM Tivoli Application Dependency Discovery Manager TADDM is a product in the suite of IT service management solutions from International Business Machines IBM. The product provides robust automated application mapping and discovery to help administrators understand the structure, state,...

The vulnerability of Microsoft Edge browser (based on Chromium) relates to information representation errors in the user interface, allowing attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Edge based on Chromium is related to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to perform spear-phishing attacks...

The vulnerability of Microsoft Edge browser on Android, related to information representation errors in the user interface, allows a hacker to perform a spear-phishing attack.

The vulnerability of Microsoft Edge browser on Android is related to information representation errors in the user interface. Exploiting this vulnerability can allow a remote attacker to perform a spear-phishing attack...

The vulnerability of Microsoft Edge browser, related to information representation errors in the user interface, allows attackers to perform spear-phishing attacks.

The vulnerability of Microsoft Edge is related to errors in information representation by the user interface. Exploiting this vulnerability can allow attackers to perform spear-phishing attacks...

The vulnerability of the user interface of the WebUI of Microsoft Edge and Google Chrome browsers allows a hacker to execute arbitrary code.

The vulnerability of the WebUI user interfaces of Microsoft Edge and Google Chrome is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

Design/Logic Flaw

vantage6-UI is the User Interface for vantage6. The docker image used to run the UI leaks the nginx version. To mitigate the vulnerability, users can run the UI as an angular application. This vulnerability was patched in 4.2.0...

CVE-2024-22200 vantage6-UI docker image leaks software version information

vantage6-UI is the User Interface for vantage6. The docker image used to run the UI leaks the nginx version. To mitigate the vulnerability, users can run the UI as an angular application. This vulnerability was patched in 4.2.0...

vantage6 Information Disclosure Vulnerability

vantage6 is vantage6 open source an open source priVAcy preserviNg federalTed leArningG infrastructure for Secure Insight eXchange. vantage6 An information disclosure vulnerability exists in vantage6-UI that stems from the docker image used to run the UI disclosing the nginx version...

PT-2024-2069 · Nginx +1 · Nginx +1

Name of the Vulnerable Software and Affected Versions: vantage6-UI versions prior to 4.2.0 Description: The issue is related to insufficient protection of service data in the vantage6-UI interface, which can allow a remote attacker to gain unauthorized access to protected information. The docker...

Nginx UI Path Traversal Vulnerability

Nginx UI is a WebUI for Nginx by Jacky Personal Developer. A path traversal vulnerability exists in versions of Nginx UI prior to 2.0.0.beta.12, which stems from the Import Certificates feature that allows arbitrary writes, which does not check if user-supplied input is a certificate or key, and...

CVE-2024-20305

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly valida...

CVE-2024-20305

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability exists because the web-based management interface does not properly valida...

Google Chrome Security Bypass Vulnerability (CNVD-2024-10261)

Google Chrome is a web browser from Google, an American company. A security bypass vulnerability exists in Google Chrome version 121.0.6167.85 and earlier versions, which stems from an incorrect security user interface in the Payments module. An attacker can exploit this vulnerability to bypass...

KLA63404 SUI vulnerability in Microsoft Browser

A spoofing vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-21336 Related products Microsoft-Edge CVE list CVE-2024-21336 warning Solution Install necessary updates from the KB section, that are list...

SUSE CVE-2024-0808

Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. Chromium security severity: High...

Unable to create DataSet using IPv4 CIDR format using GUI

When attempting to add a dataset via the GUI AppExpert Data Sets - Add, users may encounter a failure accompanied by the error message - "Value entered is not an IPv4." Note: This error message specifically occurs when the subnet mask value n is greater than 28 a.b.c.d/n...

KLA63367 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, spoof user interface, gain privileges, bypass security restrictions. Below is a complete list of...

CVE-2024-23646

Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. The application allows users to create zip files from available files on the site. In the 1.x branch prior to version 1.3.2, parameter selectedIds is susceptible to SQL Injection. Any backend user with very basic...

Default credentials

Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. The password reset functionality sends to the the user requesting a password change an email containing an URL to reset its password. The URL sent contains a unique token, valid during 24 hours, allowing the user to res...