1697 matches found
TYPO3-CORE-SA-2021-004: Cross-Site Scripting in Form Framework
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-004...
TYPO3-CORE-SA-2021-004: Cross-Site Scripting in Form Framework
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-004...
TYPO3-CORE-SA-2021-008: Cross-Site Scripting in Content Preview
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-008...
TYPO3-CORE-SA-2021-008: Cross-Site Scripting in Content Preview
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-008...
TYPO3-CORE-SA-2021-006: Cleartext storage of session identifier
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-006...
TYPO3-CORE-SA-2021-006: Cleartext storage of session identifier
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-006...
TYPO3-CORE-SA-2021-005: Denial of Service in Page Error Handling
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-005...
TYPO3-CORE-SA-2021-005: Denial of Service in Page Error Handling
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-005...
TYPO3-CORE-SA-2021-003: Broken Access Control in Form Framework
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-003...
TYPO3-CORE-SA-2021-003: Broken Access Control in Form Framework
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-003...
TYPO3-CORE-SA-2021-002: Unrestricted File Upload in Form Framework
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-002...
TYPO3-CORE-SA-2021-002: Unrestricted File Upload in Form Framework
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-002...
TYPO3-CORE-SA-2021-001: Open Redirection in Login Handling
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-001...
TYPO3-CORE-SA-2021-001: Open Redirection in Login Handling
More info at https://typo3.org/security/advisory/typo3-core-sa-2021-001...
Path Traversal within joomla/archive zip class
More info at https://developer.joomla.org/security-centre/848-20210308-core-path-traversal-within-joomla-archive-zip-class.html...
Smarty_Internal_Runtime_TplFunction Sandbox Escape PHP Code Injection
More info at https://srcincite.io/blog/2021/02/18/smarty-template-engine-multiple-sandbox-escape-vulnerabilities.html...
template_object Sandbox Escape PHP Code Injection
More info at https://srcincite.io/blog/2021/02/18/smarty-template-engine-multiple-sandbox-escape-vulnerabilities.html...
Allows write operations with Directory Traversal due to inadequate checking of symbolic links
Disallow symlinks to out-of-path filenames...
Regular expression Denial of Service
More info at https://typo3.org/security/advisory/typo3-ext-sa-2021-002...
XSS Vulnerability in HTML Writer
This is: - X a bugfix - a new feature Checklist: - X Changes are covered by unit tests - X Code style is respected - X Commit message explains why the change is made see https://github.com/erlang/otp/wiki/Writing-good-commit-messages - X CHANGELOG.md contains a short summary of the change -...
Deserialization Gadget chain in Swift Mailer
Summary Symfony 1 has a gadget chain due to vulnerable Swift Mailer dependency that would enable an attacker to get remote code execution if a developer unserialize user input in his project. Details This vulnerability present no direct threat but is a vector that will enable remote code executio...
IBEXA-SA-2020-007 Failing access control in system info view
More info at https://developers.ibexa.co/security-advisories/ibexa-sa-2020-007-failing-access-control-in-system-info-view...
Potential file overwrite if archive filename starts with file://
I have submitted this to the PEAR bug tracker as well as the PEAR group mailing list, and I'm not sure if either has gone through, so opening an issue here with the hope that this is the right place for it. While auditing a separate application which uses ArchiveTar internally, I found that...
Remote code execution
Hello, as discussed by email, this fixes a serious vulnerability. Hopefully my code is OK-ish...
Remote code execution
Hello, as discussed by email, this fixes a serious vulnerability. Hopefully my code is OK-ish...
TYPO3-CORE-SA-2020-012: XML External Entity in Dashboard Widget
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-012...
TYPO3-CORE-SA-2020-012: XML External Entity in Dashboard Widget
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-012...
TYPO3-CORE-SA-2020-011: Cleartext storage of session identifier
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-011...
TYPO3-CORE-SA-2020-011: Cleartext storage of session identifier
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-011...
TYPO3-CORE-SA-2020-010: Cross-Site Scripting in Fluid view helpers
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-010...
TYPO3-CORE-SA-2020-010: Cross-Site Scripting in Fluid view helpers
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-010...
Cross-Site Scripting through Fluid view helper arguments
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-009...
Insecure Deserialization of untrusted data
Description Impact Unserialization of untrusted data. Patches The issue has been patched and users of Requests 1.6.0, 1.6.1 and 1.7.0 should update to version 1.8.0. References Publications about the vulnerability:...
Insecure Deserialization of untrusted data
Impact Unserialization of untrusted data. Patches The issue has been patched and users of Requests 1.6.0, 1.6.1 and 1.7.0 should update to version 1.8.0. References Publications about the vulnerability:...
Unescaped message used in HTML within LogEventsList
More info at https://phabricator.wikimedia.org/T256171...
Unescaped message used in HTML on Special:Contributions
More info at https://phabricator.wikimedia.org/T255918...
Non-jqueryMsg version of mw.message(…).parse() doesn't escape HTML
More info at https://phabricator.wikimedia.org/T115888...
mw.message.parse() accepts javascript: protocol in wikilinks
More info at https://phabricator.wikimedia.org/T86738...
$this->validate() returns all properties, not just validated ones
IMPORTANT BUGFIX $this-validate usually only returns the validated dataset, however a regression was introduced, that caused it to return ALL data on the Livewire component. 1659...
$this->validate() returns all properties, not just validated ones
IMPORTANT BUGFIX $this-validate usually only returns the validated dataset, however a regression was introduced, that caused it to return ALL data on the Livewire component. 1659...
Special:UserRights exposes the existence of hidden users
More info at https://phabricator.wikimedia.org/T232568...
Possible remote code execution via unserialize() on user input containing specially crafted string
More info at https://www.yiiframework.com/news/303/yii-2-0-38...
IBEXA-SA-2020-006 Object Injection in legacy shop module
More info at https://ezplatform.com/security-advisories/ibexa-sa-2020-006-object-injection-in-legacy-shop-module...
CVE-2020-15094: Prevent RCE when calling untrusted remote with CachingHttpClient
More info at https://symfony.com/cve-2020-15094...
CVE-2020-15094: Prevent RCE when calling untrusted remote with CachingHttpClient
More info at https://symfony.com/cve-2020-15094...
CVE-2020-15227: Potential Remote Code Execution vulnerability
More info at https://blog.nette.org/en/cve-2020-15227-potential-remote-code-execution-vulnerability...
CVE-2020-15227: Potential Remote Code Execution vulnerability
More info at https://blog.nette.org/en/cve-2020-15227-potential-remote-code-execution-vulnerability...
EZSA-2020-005 Editor XSS and trashed drafts in review queue
More info at https://ezplatform.com/security-advisories/ezsa-2020-005-editor-xss-and-trashed-drafts-in-review-queue...
EZSA-2020-005 Editor XSS and trashed drafts in review queue
More info at https://ezplatform.com/security-advisories/ezsa-2020-005-editor-xss-and-trashed-drafts-in-review-queue...
TYPO3-CORE-SA-2020-008: Sensitive Information Disclosure
More info at https://typo3.org/security/advisory/typo3-core-sa-2020-008...