TOTOlink A7100RU(V7.4cu.2313_B20191024) was discovered to contain a command injection vulnerability via the province parameter at setting/delStaticDhcpRules.Read More ...
Continue Reading
February 16, 2023
In WAGO Unmanaged Switch (852-111/000-001) in firmware version 01 an undocumented configuration interface without authorization allows an remote attacker to read system information and configure a lim ...
Continue Reading
February 16, 2023
Due to improper artibute filtering in the sequalize js library, can a attacker peform SQL injections.Read More ...
Continue Reading
February 16, 2023
Due to improper input filtering in the sequalize js library, can malicious queries lead to sensitive information disclosure.Read More ...
Continue Reading
February 16, 2023
It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position ...
Continue Reading
February 16, 2023
It was discovered that the Magritte-ftp was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position ...
Continue Reading
February 16, 2023
It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position ...
Continue Reading
February 16, 2023
Improper Validation of Certificate with Host Mismatch vulnerability in Gotham Chat IRC helper of Palantir Gotham allows A malicious attacker in a privileged network position could abuse this to perfor ...
Continue Reading
February 16, 2023
Back to Main
