ThinkPHP v6.0.12 was discovered to contain a deserialization vulnerability via the component vendorleagueflysystem-cached-adaptersrcStorageAbstractCache.php. This vulnerability allows attackers to exe ...

Continue Reading

June 29, 2022

CVA6 commit 909d85a gives incorrect permission to use special multiplication units when the format of instructions is wrong.Read More ...

Continue Reading

June 29, 2022

An update that fixes 9 vulnerabilities is now available. Description: This update for chromium fixes the following issues: Chromium 103.0.5060.53 (boo#1200783) * CVE-2022-2156: Use after free ...

Continue Reading

June 29, 2022

An update that fixes 9 vulnerabilities is now available. Description: This update for chromium fixes the following issues: Chromium 103.0.5060.53 (boo#1200783) * CVE-2022-2156: Use after free ...

Continue Reading

June 29, 2022

A vulnerability was found in the search-api container when a query in the search filter gets parsed by the backend. This flaw allows an attacker to craft specific strings containing special characters ...

Continue Reading

June 29, 2022

[![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhGtbU4Y_Bwpkax3z9WFvKe0rCOG4yc5X6AudLW0x0KLeSp0lCnkADfZDCLr5TDkt6HzMiQ7V4KKMiaPjj7fXJQY1mR3eTtNpZp3Iz-JBOPbexKCuutBvWHBUxmyIlCK7FGTcUJdu ...

Continue Reading

June 29, 2022

ApiFest OAuth 2.0 Server 0.3.1 does not validate the redirect URI in accordance with RFC 6749 and is susceptible to an open redirector attack. Specifically, it directly sends an authorization code to ...

Continue Reading

June 29, 2022

Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...

Continue Reading

June 29, 2022