ranjit-git discovered an information leak vulnerability in node-fetch, a Node.js module exposing a window.fetch compatible API on Node.js runtime: the module was not honoring the same-origin-policy an ...
Continue Reading
December 04, 2022
# POC æ¶éçPOC ## CVE-2022-24112 为äºåæ¥ç§äºå¢:CVE-2022-24112é¶åºç¯å¢ï¼ä¿®æ¹äºä¸¤ä¸ª...Read More ...
Continue Reading
December 03, 2022
ghost is vulnerable to improper access control. An unprivileged member has the ability to view and change unintended newsletter settings due to improper validation for nested objects in `Memebers` API ...
Continue Reading
December 03, 2022
The version of Mattermost Server running on the remote host is prior to 7.1.4, 7.2.x prior to 7.2.1, or 7.3.x prior to 7.3.1. It is, therefore, affected by a denial of service (DoS) vulnerability. An ...
Continue Reading
December 02, 2022
The version of Mattermost Server running on the remote host is prior to 7.4.0. It is, therefore, affected by a denial of service (DoS) vulnerability. An authenticated, remote attacker can crash the se ...
Continue Reading
December 02, 2022
 _B ...
Continue Reading
December 02, 2022
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:4303-1 advisory. - If Apache Tomcat 8.5.0 to 8.5.82, 9.0.0-M1 to 9.0. ...
Continue Reading
December 02, 2022
github.com/grafana/synthetic-monitoring-agent is vulnerable to information disclosure.The vulnerability exists in multiple functions due to default installation of `synthetic-monitoring-agent` which a ...
Continue Reading
December 02, 2022
Back to Main
