The Apache Pulsar C++ Client does not verify peer TLS certificates when making HTTPS calls for the OAuth2.0 Client Credential Flow, even when tlsAllowInsecureConnection is disabled via configuration. ...
Continue Reading
November 15, 2022
The plugin does not sanitize and escape Client IDs, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disa ...
Continue Reading
November 15, 2022
The plugin does not sanitize and escape Client IDs, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disa ...
Continue Reading
November 15, 2022
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:7519 advisory. - sanitize-url: XSS due to improper sanit ...
Continue Reading
November 15, 2022
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. The following packages have been upgraded to a later upstream version: grafana (7.5.1 ...
Continue Reading
November 15, 2022
None ## Summary This security update resolves a Microsoft Word remote code execution vulnerability, Microsoft SharePoint Server remote code execution vulnerability, and Microsoft Word information disc ...
Continue Reading
November 15, 2022
None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability, Microsoft Word information disclosure vulnerability, and Microsoft Word remote code exe ...
Continue Reading
November 15, 2022
The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2022:7519 advisory. - sanitize-url: XSS due to improper sanitization in ...
Continue Reading
November 15, 2022
Back to Main
