microweber/microweber is vulnerable to Improper Privilege Management . The vulnerability exists due lack of authorization checks in the `apiResource` parameter of `api.php` which allows an attacker to ...
Continue Reading
May 07, 2023
According to the versions of the libvirt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A use-after-free flaw was fou ...
Continue Reading
May 07, 2023
modoboa is vulnerable to Improper Authorization. The vulnerability exists due to missing authorization checks on the `/api/v2/parameters/core/` API endpoint which allows an attacker to gain sensitive ...
Continue Reading
May 06, 2023
 Today, Talos is publishing a glimpse into the most prevalent threats we've observe ...
Continue Reading
May 05, 2023
 ### TL;DR The CyberGhost VPN client suffers from an elevation of privilege vulnerability and is filed under [CVE-2 ...
Continue Reading
May 05, 2023
Due to insufficient validation of parameters reflected in error messages by the legacy HTTP query API and the logging endpoint, it is possible to inject and execute malicious JavaScript within the bro ...
Continue Reading
May 05, 2023
Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host ...
Continue Reading
May 05, 2023
Due to insufficient validation of parameters passed to the legacy HTTP query API, it is possible to inject crafted OS commands into multiple parameters and execute malicious code on the OpenTSDB host ...
Continue Reading
May 05, 2023
Back to Main
