WordPress Testimonial Carousel For Elementor plugin <= 11.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widgets vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Multiple Widgets vulnerability discovered by zer0gh0st in WordPress Plugin Testimonial Carousel For Elementor versions = 11.6.2...

IBM InfoSphere 11.7.0.x < 11.7.1.6 DoS (7235496)

The version of IBM InfoSphere Information Server installed on the remote host is 11.7.0 prior to 11.7.1.6. It is, therefore, affected by a denial of service vulnerability, as referenced in the 7235496 advisory. - IBM InfoSphere Information Server could allow a remote attacker to cause a denial of...

Telegram 安全漏洞

Telegram is an open source instant messaging mobile application from Telegram. A security vulnerability exists in Telegram version v.11.7.0, which stems from a vulnerability that allows a physically proximate attacker to bypass authentication and elevate privileges by manipulating the return valu...

CVE-2020-13639

A stored XSS vulnerability was discovered in the ECT Provider in OutSystems before 2020-09-04, affecting generated applications. It could allow an unauthenticated remote attacker to craft and store malicious Feedback content into /ECTProvider/, such that when the content is viewed it can only be...

Cisco Web Security Appliance CVE-2019-15969 Cross Site Scripting Vulnerability

Description Cisco Web Security Appliance is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Thi...