In Moodle, insufficient capability checks meant message deletions were not limited to the current user.Read More ...
Continue Reading06 марта, 2023
In Moodle, insufficient capability checks made it possible to remove other users' calendar URL subscriptions.Read More ...
Continue Reading06 марта, 2023
Cross Site Scripting (XSS) vulnerability in the DataTables plug-in 1.9.2 for jQuery allows attackers to run arbitrary code via the sBaseName parameter to function _fnCreateCookie. NOTE: 1.9.2 is a ver ...
Continue Reading06 марта, 2023
Zoho ManageEngine ServiceDesk Plus through 14104, Asset Explorer through 6987, ServiceDesk Plus MSP before 14000, and Support Center Plus before 14000 allow Denial-of-Service (DoS).Read More ...
Continue Reading06 марта, 2023
In Moodle, ID numbers exported in HTML data formats required additional sanitizing to prevent a local stored XSS risk.Read More ...
Continue Reading06 марта, 2023
QlikView 12.60.2 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the QvsViewClient functionality.Read More ...
Continue Reading06 марта, 2023
In Moodle, ID numbers displayed in the quiz override screens required additional sanitizing to prevent a stored XSS risk.Read More ...
Continue Reading06 марта, 2023
In moodle, ID numbers displayed in the web service token list required additional sanitizing to prevent a stored XSS risk.Read More ...
Continue Reading06 марта, 2023
Back to Main