Many organizations utilize third-party apps for identity security solutions to automate and unburden overtaxed IT admins from tedious tasks that employees can perform via self-service without IT assis ...
Continue Reading
July 01, 2023
An issue was discovered in the CheckUserLog API in the CheckUser extension for MediaWiki through 1.39.3. There is incorrect access control for visibility of hidden users.Read More ...
Continue Reading
July 01, 2023
The plugin does not properly sanitize some of its settings, which could allow high-privilege users to perform Stored Cross-Site Scripting (XSS) attacks even when the unfiltered_html capability is disa ...
Continue Reading
June 30, 2023
The plugin does not secure most of its AJAX actions by implementing privilege checks, nonce checks, or a combination of both.Read More ...
Continue Reading
June 30, 2023
The c-ares C library defines asynchronous DNS (Domain Name System) requests and provides name resolving API. Security Fix(es): * c-ares: 0-byte UDP payload Denial of Service (CVE-2023-32067) For more ...
Continue Reading
June 30, 2023
Updates of ['linux-aws', 'linux-rt', 'openssl', 'linux-secure', 'linux'] packages of Photon OS have been released.Read More ...
Continue Reading
June 30, 2023
According to the versions of the tomcat packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Apache Commons FileUpload before 1.5 does not ...
Continue Reading
June 30, 2023
The WooCommerce Multivendor Marketplace â REST API plugin for WordPress is vulnerable to unauthorized access of data and addition of data due to a missing capability check on the 'get_item', 'get ...
Continue Reading
June 30, 2023
Back to Main
