org.owasp/dependency-check is vulnerable to Information Disclosure. The vulnerability is due to the nvdApiKey not being masked because it doesn't match the specified patterns. As a result, when d ...
Continue Reading
December 20, 2023
h2o is vulnerable to External Control of File Name or Path. The vulnerability exists due to improper input validation which allows an attacker to manipulate file paths to access or modify files outsid ...
Continue Reading
December 20, 2023
IBM Informix JDBC Driver 4.10 and 4.50 is susceptible to remote code execution attack via JNDI injection when passing an unchecked argument to a certain API. IBM X-Force ID: ...Read More ...
Continue Reading
December 20, 2023
A vulnerable API method in M-Files Server before 23.12.13195.0 allows for uncontrolled resource consumption. Authenticated attacker can exhaust server storage space to a point where the server can no ...
Continue Reading
December 20, 2023
basketcraft this is a script that exploits the CVE-2023-27163 vulnerability which is an SSRF in the request-baskets version 1.2.1 SSRF on Request-Baskets (CVE-2023–27163) CVE-2023–27163 represents ...
Continue Reading
December 20, 2023
basketcraft this is a script that exploits the CVE-2023-27163 vulnerability which is an SSRF in the request-baskets version 1.2.1 SSRF on Request-Baskets (CVE-2023–27163) CVE-2023–27163 represents ...
Continue Reading
December 20, 2023
basketcraft this is a script that exploits the CVE-2023-27163 vulnerability which is an SSRF in the request-baskets version 1.2.1 SSRF on Request-Baskets (CVE-2023–27163) CVE-2023–27163 represents ...
Continue Reading
December 20, 2023
Back to Main
