WordPress Ajax Search Lite plugin <= 4.13.1 - Missing Authorization to Unauthenticated Basic Information Exposure via ASL_Query in AJAX Search Handler vulnerability

Missing Authorization to Unauthenticated Basic Information Exposure via ASLQuery in AJAX Search Handler vulnerability discovered by stealthcopter in WordPress Plugin Ajax Search Lite versions = 4.13.1...

Security Bulletin: Addressing the Security vulnerability CVE-2020-15250 found in junit-4.10.jar and its previous versions as part of ITCAM for Transactions

Summary IBM Tivoli Composite Application Manager ITCAM for Transactions - Transaction Tracking has addressed the following junit-4.10.jar vulnerability and updated junit.jar from version 4.4 to 4.13.2 Vulnerability Details CVEID:CVE-2020-15250 DESCRIPTION: JUnit4 could allow a local attacker to...

SUSE-SU-2021:0185-1 Security update for samba

This update for samba fixes the following issues: - Update to 4.13.3 + libcli: smb2: Never print length if smb2signingkeyvalid fails for crypto blob; bso14210; + s3: modules: gluster. Fix the error I made in preventing talloc leaks from a function; bso14486; + s3: smbd: Don't overwrite contents o...

SUSE-SU-2020:3412-1 Security update for xen

This update for xen fixes the following issues: Security issue fixed: - CVE-2020-28368: Fixed the Intel RAPL sidechannel attack, aka PLATYPUS attack, aka XSA-351 bsc1178591. Non-security issues fixed: - Updated to Xen 4.13.2 bug fix release bsc1027519. - Fixed a panic during MSI cleanup on AMD...

Malicious Package in epress

Version 4.13.2 of epress contains malicious code . The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. Upon require the package attempts to start a cryptocurrency miner using coin-hive. Recommendation Remove the package from you...