Security Advisory Description This candidate has been reserved by a CVE Numbering Authority (CNA). This record will be updated by the assigning CNA once details are available. Learn more about the Res ...
Continue Reading
February 19, 2024
All versions of the package github.com/greenpau/caddy-security are vulnerable to Authentication Bypass by Spoofing via the X-Forwarded-For header due to improper input sanitization. An attacker can sp ...
Continue Reading
February 18, 2024
Versions of the package github.com/greenpau/caddy-security before 1.0.42 are vulnerable to Insecure Randomness due to using an insecure random number generation library which could possibly be predict ...
Continue Reading
February 18, 2024
Background Log4j is a Java logging framework that supports various use cases with a rich set of components, a separate API, and a performance-optimized implementation. Description Multiple vulnerabili ...
Continue Reading
February 18, 2024
A command injection vulnerability exists in Kafka ui between v0.4.0 and v0.7.1 allowing an attacker to inject and execute arbitrary shell commands via the groovy filter parameter at the topic...Read M ...
Continue Reading
February 17, 2024
The security of both a TUF client and repository implementations depend on the concept of trusted Metadata objects verifying the signatures over other Metadata that it delegates to. This verification ...
Continue Reading
February 17, 2024
libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any langu ...
Continue Reading
February 17, 2024
libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any langu ...
Continue Reading
February 17, 2024
Back to Main
