CVE
Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.Read More ...
Continue ReadingJanuary 29, 2023
API security news
Well-known information security vulnerabilities database
CVE
Weak Password Requirements in GitHub repository froxlor/froxlor prior to 2.0.10.Read More ...
Continue ReadingJanuary 29, 2023
CVE
loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive.Read More ...
Continue ReadingJanuary 29, 2023
CVE
A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Lo ...
Continue ReadingJanuary 29, 2023
CVE
A vulnerability classified as problematic has been found in PHPGurukul Bank Locker Management System 1.0. This affects an unknown part of the file add-locker-form.php of the component Assign Locker. T ...
Continue ReadingJanuary 29, 2023
CVE
A vulnerability has been found in NYUCCL psiTurk up to 3.2.0 and classified as critical. This vulnerability affects unknown code of the file psiturk/experiment.py. The manipulation of the argument mod ...
Continue ReadingJanuary 29, 2023
Bugbounty
Hello In the Cronjob we can change the Interval Time the Dropdown Menu "minutes" to a stored HTML Injection. The Vulnerabilities are 2: 1. First thing the Dropdown Menu should be fixed and nobody c ...
Continue ReadingJanuary 29, 2023
Bugbounty
Hello, Through manipulating Parameter i get an SQL Error which can lead to SQL Injection. Plus that there is an internal Path Disclosure. Best regards Ahmed HassanRead More ...
Continue ReadingJanuary 29, 2023
Bugbounty
Hello It is possible to manipulate the Language Dropdown Menu and change it to anything the attacker wants. Process of the Vulnerability: 1. Login 2. Go Miscellaneous -> Email & file template ...
Continue ReadingJanuary 29, 2023