Exploit for Authentication Bypass by Spoofing in Apache Apisix

# POC 收集的POC ## CVE-2022-24112 为了做春秋云境:CVE-2022-24112靶场环境,修改了两个...Read More ...

Continue Reading
Improper Access Control

ghost is vulnerable to improper access control. An unprivileged member has the ability to view and change unintended newsletter settings due to improper validation for nested objects in `Memebers` API ...

Continue Reading
Mattermost Server < 7.1.4 / 7.2.x < 7.2.1 / 7.3.x < 7.3.1 DoS (MMSA-2022-00118)

The version of Mattermost Server running on the remote host is prior to 7.1.4, 7.2.x prior to 7.2.1, or 7.3.x prior to 7.3.1. It is, therefore, affected by a denial of service (DoS) vulnerability. An ...

Continue Reading
Mattermost Server < 7.4.0 DoS (MMSA-2022-00124)

The version of Mattermost Server running on the remote host is prior to 7.4.0. It is, therefore, affected by a denial of service (DoS) vulnerability. An authenticated, remote attacker can crash the se ...

Continue Reading
Velociraptor Version 0.6.7: Better Offline Collection, Encryption, and an Improved NTFS Parser Dig Deeper Than Ever

![Velociraptor Version 0.6.7: Better Offline Collection, Encryption, and an Improved NTFS Parser Dig Deeper Than Ever](https://blog.rapid7.com/content/images/2022/12/ThinkstockPhotos-177843422.jpg) _B ...

Continue Reading
SUSE SLES12 Security Update : tomcat (SUSE-SU-2022:4303-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:4303-1 advisory. - If Apache Tomcat 8.5.0 to 8.5.82, 9.0.0-M1 to 9.0. ...

Continue Reading
Information Disclosure

github.com/grafana/synthetic-monitoring-agent is vulnerable to information disclosure.The vulnerability exists in multiple functions due to default installation of `synthetic-monitoring-agent` which a ...

Continue Reading
Researchers Disclose Supply-Chain Flaw Affecting IBM Cloud Databases for PostgreSQL

[![Supply-Chain Flaw](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEhgZbW2cp0e-p4EX0QTxiK4EBxzi5NdqCGzkBkzkOXrYc5qBdR7jdXLzIwWaOuqDls5E-Mio2-JlT-pxumEw1K50rgRBopLlCGamnOY15TathJjxwoah4fJks ...

Continue Reading

Back to Main

Subscribe for the latest news:
Generated by Feedzy