Following the coordinated and responsible vulnerability disclosure guidelines of the **[ISO 29147]()** standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. not ...
Continue Reading
July 07, 2022
A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifier ...
Continue Reading
July 07, 2022
Command injection vulnerability in CWP v0.9.8.1126 that allows normal users to run commands as the root user.Read More ...
Continue Reading
July 07, 2022
A path traversal vulnerability in loader.php of CWP v0.9.8.1122 allows attackers to execute arbitrary code via a crafted POST request.Read More ...
Continue Reading
July 07, 2022
The password reset token in CWP v0.9.8.1126 is generated using known or predictable values.Read More ...
Continue Reading
July 07, 2022
A memory corruption in Hex Rays Ida Pro v6.6 allows attackers to cause a Denial of Service (DoS) via a crafted file. Related to Data from Faulting Address controls subsequent Write Address starting at ...
Continue Reading
July 07, 2022
Codoforum v5.1 was discovered to contain an arbitrary file upload vulnerability via the logo change option in the admin panel.Read More ...
Continue Reading
July 07, 2022
In nextgen-galery wordpress plugin before 2.0.77.3 there are two vulnerabilities which can allow an attacker to gain full access over the web application. The vulnerabilities lie in how the applicatio ...
Continue Reading
July 07, 2022
Back to Main
