5 matches found
react-admin 跨站脚本漏洞
react-admin is a front-end framework for building data-driven applications that run in the browser on top of a REST/GraphQL API, using ES6, React, and Material Design. A security vulnerability exists in react-admin versions 3.x prior to 3.19.12 and 4.x prior to 4.7.6, which stems from the presenc...
Wowza Media Systems Streaming Engine Cross-Site Scripting Vulnerability
Wowza Media Systems Streaming Engine is a suite of streaming media server software from Wowza Media Systems in the United States. A cross-site scripting vulnerability exists in the server selection box on the login page of enginemanager/loginfailed.html in Wowza Media Systems Streaming Engine 4.x...
FlightPath path traversal vulnerability
FlightPath is an open source academic advising system for universities. A path traversal vulnerability exists in FlightPath versions 4.x and 5.0-x. The vulnerability stems from a failure of a networked system or product to properly filter special elements in the path of a resource or file. An...
Joyent Node.js atob Denial of Service Vulnerability
Joyent Node.js is the United States Joyent a set of web applications built on top of Google V8 JavaScript engine platform. atob is one of the use of Buffer to simulate the browser ATOB functionality of the module . A security vulnerability exists in atob 2.0.3 and earlier on Joyent Node.js 4.x an...
Samba Man-in-the-Middle Attack Vulnerability
Samba is a set of programs that implement the SMB Server Messages Block protocol, cross-platform file sharing and print sharing services. A man-in-the-middle attack vulnerability exists in Samba versions 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3. The vulnerability can be...