XML Injection

org.apache.ivy:ivy is vulnerable to XML Injection. The vulnerability exists due to improper external DTD XML restrictions. An attacker is able to exploit this vulnerability by parsing a specially craf ...

Continue Reading

August 23, 2023

Insufficient URL Validation

org.apache.nifi:nifi-dbcp-base is vulnerable to Insufficient URL Validation. The vulnerability allows an authenticated attacker with relevant privileges to bypass connection URL validation using custo ...

Continue Reading

August 23, 2023

CVSS3 - MEDIUM

CVSS2 - MEDIUM

SugarCRM 12.2.0 SQL Injection

Post ContentRead More ...

Continue Reading

August 23, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

SugarCRM 12.2.0 Bean Manipulation

Post ContentRead More ...

Continue Reading

August 23, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

SugarCRM 12.2.0 PHP Object Injection

Post ContentRead More ...

Continue Reading

August 23, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

CrafterCMS 4.0.2 Cross Site Scripting

Post ContentRead More ...

Continue Reading

August 23, 2023

CVSS3 - MEDIUM

CVSS2 - MEDIUM

Over a Dozen Malicious npm Packages Target Roblox Game Developers

[![Roblox Game Developers](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)]() More than a dozen malicious packages have been discove ...

Continue Reading

August 23, 2023

[SECURITY] Fedora 38 Update: python-yfinance-0.2.28-4.fc38

Ever since Yahoo! finance decommissioned their historical data API, many programs that relied on it to stop working. yfinance aims to solve this problem by offering a reliable, threaded, and Pythonic ...

Continue Reading

August 23, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

1 8,758 8,759 8,760 8,761 8,762 9,321

Back to Main
Subscribe for the latest news: