GHSA-XPXP-R8HF-WGF6 WSO2 products vulnerable to Cross-site Scripting

A reflected cross-site scripting XSS vulnerability exists in multiple WSO2 products due to insufficient output encoding in error messages generated by the JDBC user store connection validation request. A malicious actor can inject a specially crafted payload into the request, causing the browser ...

SUSE CVE-2010-1320

Double free vulnerability in dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.7.x and 1.8.x before 1.8.2 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a request associated with 1 renewal or 2 validation...