The vulnerability exists in ADiTaaS (Allied Digital Integrated Tool-as-a-Service) version 5.1 due to an improper authentication vulnerability in the ADiTaaS backend API. An unauthenticated remote atta ...
Continue Reading
December 18, 2023
Multiple WSO2 products have been identified as vulnerable due to improper output encoding, a Stored Cross Site Scripting (XSS) attack can be carried out by an attacker injecting a malicious payload in ...
Continue Reading
December 18, 2023
The api /api/snapshot and /api/get_log_file would allow unauthenticated access. It could allow a DoS attack or get arbitrary files from FE node. Please upgrade to 2.0.3 to fix these...Read More ...
Continue Reading
December 18, 2023
An improper handling of a malformed API request to an API server in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS)...Read More ...
Continue Reading
December 18, 2023
An improper handling of a malformed API answer packets to API clients in Bosch BT software products can allow an unauthenticated attacker to cause a Denial of Service (DoS) situation. To exploit this ...
Continue Reading
December 18, 2023
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-239f057b33 advisory. UnrealIRCd 6.1.3 The main focus of this release is adding ...
Continue Reading
December 18, 2023
Description Impact When an attacker manages to get access to an active session of another user via another way, they could delete and modify workflows by sending calls directly to the API bypassing th ...
Continue Reading
December 18, 2023
CVE-2023-23752 Description This repository contains Python and Bash scripts that serve as ports of the original Proof of Concept (PoC) written in Ruby for the vulnerability CVE-2023-23752 in Joomla! C ...
Continue Reading
December 18, 2023
Back to Main
