CVE-2023-28013

HCL BigFix Mobile is vulnerable to a cross-site scripting attack. An authenticated attacker could inject malicious scripts into the application.Read More ...

Continue Reading

27 июля, 2023

CVE-2023-3451

** REJECT ** Duplicate CVE. Please use CVE-2023-32297.Read More ...

Continue Reading

27 июля, 2023

enhance-face.com Cross Site Scripting vulnerability OBB-3552593

Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...

Continue Reading

27 июля, 2023

CSRF vulnerability in GitLab Authentication Plugin

GitLab Authentication Plugin 1.17.1 and earlier does not implement a state parameter in its OAuth flow, a unique and non-guessable value associated with each authentication request. This vulnerability ...

Continue Reading

27 июля, 2023

CVE-2023-31465

An issue was discovered in FSMLabs TimeKeeper 8.0.17 through 8.0.28. By intercepting requests from various timekeeper streams, it is possible to find the getsamplebacklog call. Some query parameters a ...

Continue Reading

26 июля, 2023

CVE-2023-37623

Netdisco before v2.063000 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Web/TypeAhead.pm.Read More ...

Continue Reading

26 июля, 2023

CVE-2023-31466

An XSS issue was discovered in FSMLabs TimeKeeper 8.0.17. On the "Configuration -> Compliance -> Add a new compliance report" and "Configuration -> Timekeeper Configuration -> Add a new so ...

Continue Reading

26 июля, 2023

CVE-2022-31456

A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team name parameter.Read More ...

Continue Reading

26 июля, 2023

1 48 875 48 876 48 877 48 878 48 879 77 214

Back to Main
Subscribe for the latest news: