2 matches found
synapse Authorization Issues Vulnerabilities
synapse is an application for open federated instant messaging and VoIP An authorization issue vulnerability exists in Synapse that stems from a read receipt that allows an attacker to forge any event. Affected Products and Versions:Synapse versions prior to 0.34.0 through 1.93.0...
TaxonWorks SQL Injection Vulnerability
TaxonWorks is an open source web-based workbench for taxonomists and biodiversity scientists from Species File Group. A SQL injection vulnerability exists in TaxonWorks versions prior to 0.34.0, which originates from a vulnerability that could allow an authenticated attacker to extract arbitrary...