The package protobufjs before 6.11.3 are vulnerable to Prototype Pollution which can allow an attacker to add/modify properties of the Object.prototype. This vulnerability can occur in multiple ways: ...
Continue Reading30 мая, 2022
The Master operator may be able to embed script tag in HTML with alert pop-up display cookie.Read More ...
Continue Reading30 мая, 2022
The software may be vulnerable to both Un-Auth XML interaction and unauthenticated device enrollment.Read More ...
Continue Reading30 мая, 2022
Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.Read More ...
Continue Reading30 мая, 2022
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker ...
Continue Reading30 мая, 2022
Multiple vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote attacker ...
Continue Reading30 мая, 2022
A vulnerability in the web interface of Cisco Enterprise Chat and Email (ECE) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interfa ...
Continue Reading30 мая, 2022
A vulnerability in the web-based management interface of Cisco Secure Network Analytics, formerly Cisco Stealthwatch Enterprise, could allow an authenticated, remote attacker to execute arbitrary comm ...
Continue Reading30 мая, 2022
Back to Main