Astra Linux - уязвимость в connman

In ConnMan version 1.41, a man-in-the-middle attack against a WISPR HTTP query could cause a use-after-free error in WISPR handling, resulting in crashes or code execution...

📄 IBM BigFix Platform 9.2 Information Disclosure

IBM BigFix Platform version 9.2 information gathering proof of concept exploit. ============================================================================================================================================= | Title : IBM BigFix Platform 9.2 gather information Vulnerability | | Auth...

EUVD-2023-57828

Malicious code in bioql PyPI...

CVE-2023-5515

The responses for web queries with certain parameters disclose internal path of resources. This information can be used to learn internal structure of the application and to further plot attacks against web servers and deployed web applications...

Design/Logic Flaw

The responses for web queries with certain parameters disclose internal path of resources. This information can be used to learn internal structure of the application and to further plot attacks against web servers and deployed web applications...

CVE-2023-5515

The responses for web queries with certain parameters disclose internal path of resources. This information can be used to learn internal structure of the application and to further plot attacks against web servers and deployed web applications...

CVE-2023-5515

Hitachi Energy eSOMS vulnerability CVE-2023-5515: exposure of internal resource paths via certain web query parameters. Affected product: eSOMS v6.3.13 and prior. Root cause: web responses reveal internal application structure, enabling information disclosure (CWE-497). Impact: potential disclosu...

PT-2023-7361 · Mastodon · Mastodon

Name of the Vulnerable Software and Affected Versions: Mastodon versions prior to 3.5.9 Mastodon versions prior to 4.0.5 Mastodon versions prior to 4.1.3 Description: The issue is related to Mastodon's handling of outgoing HTTP queries, where a timeout is set on individual read operations. A...

PT-2022-4549 · Comodo +1 · Itop +1

Name of the Vulnerable Software and Affected Versions: Combodo iTop versions prior to 2.7.6 and 3.0.0 Description: The issue is related to incorrect code generation management in the iTop web-based IT Service Management tool. It allows users of the iTop user portal to send TWIG code to the server...

How to Use Excel to Scrape a Website

By Owais Sultan There are two ways to use Excel as a scraper: the web queries method and the VBA method. Here is how to use Excel to scrape a website using each. This is a post from HackRead.com Read the original post: How to Use Excel to Scrape a Website...

UBUNTU-CVE-2013-7329

The CGI::Application module before 4.5050 and 4.5051 for Perl, when run modes are not specified, allows remote attackers to obtain sensitive information web queries and environment details via vectors related to the dumphtml function...

CVE-2013-7329

The CVE-2013-7329 issue affects the Perl CGI::Application module before versions 4.50_50 and 4.50_51. When run modes are not specified, an attacker can obtain sensitive information (web queries and environment details) via vectors related to the dump_html function. Public references describe the ...

CVE-2013-7329

The CGI::Application module before 4.5050 and 4.5051 for Perl, when run modes are not specified, allows remote attackers to obtain sensitive information web queries and environment details via vectors related to the dumphtml function...