Dell PowerScale OneFS 9.0.0.x - 9.4.0.x contain an insertion of sensitive information into log file vulnerability in celog. A low privileges user could potentially exploit this vulnerability, leading ...
Continue ReadingFebruary 01, 2023
Last Yard 22.09.8-1 does not enforce HSTS headersRead More ...
Continue ReadingFebruary 01, 2023
Connectwise Automate 2022.11 is vulnerable to Clickjacking. The login screen can be iframed and used to manipulate users to perform unintended actions.Read More ...
Continue ReadingFebruary 01, 2023
A vulnerability, which was classified as critical, has been found in TRENDnet TEW-652BRP 3.04B01. This issue affects some unknown processing of the file get_set.ccp of the component Web Management Int ...
Continue ReadingFebruary 01, 2023
A vulnerability in the Remember Me function of Masa CMS v7.2, 7.3, and 7.4-beta allows attackers to bypass authentication via a crafted web request.Read More ...
Continue ReadingFebruary 01, 2023
Connectwise Automate 2022.11 is vulnerable to Cleartext authentication. Authentication is being done via HTTP (cleartext) with SSL disabled.Read More ...
Continue ReadingFebruary 01, 2023
Selfwealth iOS mobile App 3.3.1 is vulnerable to Insecure App Transport Security (ATS) Settings.Read More ...
Continue ReadingFebruary 01, 2023
In Connectwise Control 22.8.10013.8329, the login page does not implement HSTS headers therefore not enforcing HTTPS.Read More ...
Continue ReadingFebruary 01, 2023
Back to Main