Astra Linux - уязвимость в binutils

Heap-based Buffer Overflow in the bfdgetl32 function in Binutils objdump 3.37...

EUVD-2023-52384

Malicious code in bioql PyPI...

CVE-2023-48328

CVE-2023-48328 affects Imagely WordPress Gallery Plugin – NextGEN Gallery (≤3.37). It is a Cross-Site Request Forgery (CSRF) vulnerability that could enable unauthorized actions. A fix is available in 3.39; upgrade to 3.39+ to mitigate. Other sources (OpenVAS/Patchstack) corroborate CSRF risk for...

PT-2023-30788 · Imagely · Imagely Wordpress Gallery Plugin - Nextgen Gallery

Name of the Vulnerable Software and Affected Versions: Imagely WordPress Gallery Plugin – NextGEN Gallery versions through 3.37 Description: A Cross-Site Request Forgery CSRF issue allows unauthorized actions to be performed on behalf of a user. This can lead to various security problems, includi...

WordPress NextGEN Gallery Plugin <= 3.37 is vulnerable to Cross Site Request Forgery (CSRF)

Software NextGEN Gallery Type Plugin Vulnerable versions = 3.37 Fixed in 3.39 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-48328 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID b8ea9e94978b Credits RE-ALTER Required...

PT-2022-3024 · Sourcegraph · Sourcegraph

Name of the Vulnerable Software and Affected Versions: Sourcegraph versions prior to 3.37 Description: The issue is related to the gitserver service in Sourcegraph, which acts as a git exec proxy and fails to properly restrict calling git config. This allows an attacker to set the git...