The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:1405 advisory. A timing based side channel exists in the OpenSSL RS ...
Continue Reading
February 09, 2024
An issue discovered in N-able N-central before 2023.6 and earlier allows attackers to gain escalated privileges via API...Read More ...
Continue Reading
February 09, 2024
OpenObserve is a observability platform built specifically for logs, metrics, traces, analytics, designed to work at petabyte scale. A vulnerability has been identified in the "/api/{org_id}/ ...
Continue Reading
February 09, 2024
OpenObserve is a observability platform built specifically for logs, metrics, traces, analytics, designed to work at petabyte scale. A critical vulnerability has been identified in the "/api/ ...
Continue Reading
February 09, 2024
The Simple Page Access Restriction plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.21 via the REST API. This makes it possible for unauth ...
Continue Reading
February 08, 2024
CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A cross-site scripting vulnerability has been discovered in the core HTML parsing module in versions of CKEditor4 prior to 4.24.0- ...
Continue Reading
February 08, 2024
Graylog is a free and open log management platform. Starting in version 2.0.0 and prior to versions 5.1.11 and 5.2.4, arbitrary classes can be loaded and instantiated using a HTTP PUT request to the / ...
Continue Reading
February 08, 2024
Impact A vulnerability has been identified when granting a create or * global role for a resource type of "namespaces"; no matter the API group, the subject will receive * permission ...
Continue Reading
February 08, 2024
Back to Main
