3 matches found
Microsoft Security Update Validation Report November 2022
Microsoft’s November 2022 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English-only environments and issues may still be found upon implementation. Follow best practices for testing and installing softwa...
anonymizers+java+javascript.txt
Date: Tue, 13 Apr 1999 20:14:49 +0200 From: Patrick Oonk To: [email protected] Subject: Serious security holes in web anonimyzing services From: "Richard M. Smith" Subject: Serious security holes in Web anonymizing services Date: Sun, 11 Apr 1999 19:23:25 -0400 Newsgroups: comp.security.misc...
CVE-2020-5220: Ability to define unintended serialisation groups via HTTP header which might lead to data exposure
Impact ResourceBundle accepts and uses any serialisation groups to be passed via a HTTP header. This might lead to data exposure by using an unintended serialisation group - for example it could make Shop API use a more permissive group from Admin API. Anyone exposing an API with ResourceBundle's...