The Scratch Channel is a news website that is under development as of time of this writing. The file /api/users.js doesn't properly sanitize text box inputs, leading to a potential vulnerability ...
Continue Reading
July 17, 2025
ZITADEL is an open source identity management system. Starting in version 2.53.0 and prior to versions 4.0.0-rc.2, 3.3.2, 2.71.13, and 2.70.14, vulnerability in ZITADEL's session management API a ...
Continue Reading
July 17, 2025
In JetBrains YouTrack before 2025.2.86069, 2024.3.85077, 2025.1.86199 email spoofing via an administrative API was...Read More ...
Continue Reading
July 17, 2025
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.39.0, File Browser’s authentication s ...
Continue Reading
July 17, 2025
Details It was discovered that PHP incorrectly handled certain hostnames containing null characters. A remote attacker could possibly use this issue to bypass certain hostname validation checks. (CVE- ...
Continue Reading
July 17, 2025
The @fastify/view plugin, when used with the EJS engine and the reply.view({ raw: <user-controlled-string> }) pattern, allowed arbitrary EJS execution. This vulnerability arose from the ...
Continue Reading
July 17, 2025
Vulnerability description not...Read More ...
Continue Reading
July 17, 2025
Vulnerability description not...Read More ...
Continue Reading
July 17, 2025
Back to Main
