Malicious code in corporate-blocking (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a096b32dfa76f7e64480d72862c34ec7e644ac03db51ad09af0eb1f929d637a1 The package corporate-blocking was found to contain malicious code. Source: ossf-package-analysis...

CVE-2024-0251

The Advanced Woo Search plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search parameter in all versions up to, and including, 2.96 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

Intel Server Board 安全漏洞

Intel Server Board is a server motherboard from Intel Corporation USA. A security vulnerability exists in Intel Server Board BMC firmware versions prior to 2.90, which originates from incorrect input validation. An attacker could exploit the vulnerability to cause information disclosure...

PT-2022-10492 · Unknown · Ccure 9000

Name of the Vulnerable Software and Affected Versions: CCURE 9000 versions prior to 2.90 Description: The issue allows a CCURE Portal user to enumerate user accounts under certain circumstances. Recommendations: For CCURE 9000 versions prior to 2.90, update to a version later than 2.90 to resolve...

Dell EMC iDRAC6 Monolithic and Modular Command Injection Vulnerabilities

Dell EMC iDRAC6 Monolithic and Modular are both system management solutions containing hardware and software from Dell USA. The solutions provide remote management, crash system recovery and power control for Dell PowerEdge systems. A command injection vulnerability exists in the web-based...