Summary A maliciously crafted permission request can show the spoofed permission prompt by inserting a broken ANSI escape sequence into the request contents. Details In the patch for CVE-2023-28446, D ...
Continue Reading
March 06, 2024
LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to control the final part of the path parameter in a load_chain call. This bypasses the intended behavior of loading con ...
Continue Reading
March 06, 2024
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-542 advisory. A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or ...
Continue Reading
March 06, 2024
Impact Insufficient validation of parameters in Deno.makeTemp* APIs would allow for creation of files outside of the allowed directories. This may allow the user to overwrite important files on the sy ...
Continue Reading
March 06, 2024
Summary A vulnerability in Deno's Node.js compatibility runtime allows for cross-session data contamination during simultaneous asynchronous reads from Node.js streams sourced from sockets or fil ...
Continue Reading
March 06, 2024
SharpCovertTube is a program created to control Windows systems remotely by uploading videos to Youtube. The program monitors a Youtube channel until a video is uploaded, decodes the QR code from the ...
Continue Reading
March 06, 2024
Summary A maliciously crafted permission request can show the spoofed permission prompt by inserting a broken ANSI escape sequence into the request contents. Details In the patch for CVE-2023-28446, D ...
Continue Reading
March 06, 2024
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-542 advisory. A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or ...
Continue Reading
March 06, 2024
Back to Main
