Description of the security update for SharePoint Server Subscription Edition: May 10, 2022 (KB5002194)

None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see [Microsoft Common Vulnerabilities and Exposu ...

Continue Reading
Description of the security update for SharePoint Server 2019: May 10, 2022 (KB5002207)

None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see [Microsoft Common Vulnerabilities and Exposu ...

Continue Reading
URL Redirection to Untrusted Site (‘Open Redirect’) in next-auth

### Impact We found that this vulnerability is present when the developer is implementing an OAuth 1 provider (by extension, it means Twitter, which is the only built-in provider using OAuth 1), but * ...

Continue Reading
QRadar Community Edition 7.3.1.6 Server Side Request Forgery Vulnerability

QRadar Community Edition version 7.3.1.6 has an issue where the RssFeedItem class of the QRadar web application is used to fetch and parse RSS feeds. No validation is performed on the user-supplied RS ...

Continue Reading
QRadar Community Edition 7.3.1.6 Server Side Request Forgery

Post ContentRead More ...

Continue Reading
SALTO ProAccess SPACE 5.5 Traversal / File Write / XSS / Bypass Vulnerabilities

SALTO ProAccess SPACE versions 5.5 and below suffer from path traversal, arbitrary file write, persistent cross site scripting, privilege escalation, and clear text transmission of sensitive data vuln ...

Continue Reading
SALTO ProAccess SPACE 5.5 Traversal / File Write / XSS / Bypass

Post ContentRead More ...

Continue Reading
MyEtherWallet: Local Storage Custom Node Credentials Leak

## Summary Credentials for a custom node are stored in plain text inside Local Storage on the user's machine. If this node is configured in a certain way this could lead to the theft of any funds in a ...

Continue Reading

Back to Main

Subscribe for the latest news: