Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...
Continue Reading
14 июля, 2023
The "Buy Me a Coffee â Button and Widget Plugin" plugin for WordPress is vulnerable to Cross-Site Scripting in versions up to, and including, 3.6 due to insufficient sanitization and escaping on ...
Continue Reading
14 июля, 2023
Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral Read More ...
Continue Reading
14 июля, 2023
Improper Privilege Control in RazerCentralSerivce Named Pipe in Razer RazerCentral Read More ...
Continue Reading
14 июля, 2023
Thymeleaf through 3.1.1.RELEASE, as used in spring-boot-admin (aka Spring Boot Admin) through 3.1.1 and other products, allows sandbox bypass via crafted HTML. This may be relevant for SSTI (Server Si ...
Continue Reading
14 июля, 2023
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture fileRead More ...
Continue Reading
14 июля, 2023
Kafka dissector crash in Wireshark 4.0.0 to 4.0.6 and 3.6.0 to 3.6.14 allows denial of service via packet injection or crafted capture fileRead More ...
Continue Reading
14 июля, 2023
Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...
Continue Reading
14 июля, 2023
Back to Main
