PowerCMS XMLRPC API provided by Alfasado Inc. contains a command injection vulnerability ([CWE-74]()). Sending a specially crafted message by POST method to PowerCMS XMLRPC API may allow arbitrary Per ...
Continue ReadingSeptember 01, 2022
### Impact Anyone who uses elrond-go to process blocks (historical or actual) that contains a transaction like this: `MultiESDTNFTTransfer@01@54444558544b4b5955532d323631626138@00@0793afc18c8da2ca@` ( ...
Continue ReadingSeptember 01, 2022
### Impact Anyone who uses elrond-go to process blocks (historical or actual) that contains a transaction like this: `MultiESDTNFTTransfer@01@54444558544b4b5955532d323631626138@00@0793afc18c8da2ca@` ( ...
Continue ReadingSeptember 01, 2022
Welcome to the first edition of the Qualys Research Teams Threat Research Thursday where we collect and curate notable new tools, techniques, procedures, threat intelligence, cybersecurity news, ...
Continue ReadingSeptember 01, 2022
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...
Continue ReadingSeptember 01, 2022
A vulnerability was found in the search-api container in Red Hat Advanced Cluster Management for Kubernetes when a query in the search filter gets parsed by the backend. This flaw allows an attacker t ...
Continue ReadingSeptember 01, 2022
Dell PowerProtect Cyber Recovery versions before 19.11.0.2 contain an authentication bypass vulnerability. A remote unauthenticated attacker may potentially access and interact with the docker registr ...
Continue ReadingSeptember 01, 2022
An update that fixes one vulnerability is now available. Description: This update for python-M2Crypto fixes the following issues: - CVE-2020-25657: Fixed Bleichenbacher timing attacks in the RSA ...
Continue ReadingSeptember 01, 2022
Back to Main