5 matches found
SilverStripe Assets Module 安全漏洞
The SilverStripe Assets Module is an asset component of the SilverStripe framework developed by the New Zealand-based company SilverStripe. Versions of the SilverStripe Assets Module prior to 2.4.5, as well as versions 3.0.0-rc1 to 3.1.2, contained security vulnerabilities. These vulnerabilities...
Spring Session 3.0.0-RC1
Spring Session 3.1.0-RC1 has been released. The biggest news from this release is that Spring Session Geode was removed which means all of the Spring Modules now belong to the same lifecycle. This means that the Spring Session BOM no longer uses CalVer and instead uses the same version as the...
jQuery 3.0.0-rc1 DoS Vulnerability
jQuery is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jquery:jquery"; if...
PT-2021-15235 · Github · Github Enterprise Server
Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server versions 3.0.0, 3.0.0.rc2, and 3.0.0.rc1 Description: An improper access control issue was identified that allowed an authenticated user with the ability to fork a repository to disclose Actions secrets for the parent...
GRR 3.0.0-RC1 Remote Code Execution / File Upload
Exploit Title: GRR | @kmkzsecurity Vendor Homepage: http://grr.devome.com/fr/ Software Link: http://grr.devome.com/fr/telechargement/category/3-versions-patch?download=7:grr-3-0-0-rc1 Version: 3.0.0-RC1 Tested on: Windows 2003 R2, PHP 5.2.6 Dork: inurl:/grr/ intext:réservation intitle:"GRR" CVE I...