It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-140 advisory. - If Apache Tomcat 8.5.0 to 8.5.82, 9.0.0-M1 to 9.0.67, 10.0.0-M1 to 10.0.26 or 10.1.0-M1 to 10.1.0 was ...
Continue Reading
March 24, 2023
### Summary When a Graphite data source is added, one can use this data source in a dashboard. This contains a feature to use `Functions`. Once a function is selected, a small tooltip will be shown wh ...
Continue Reading
March 23, 2023
A vulnerability was found in Zhong Bang CRMEB Java up to 1.3.4. It has been declared as critical. This vulnerability affects the function getAdminList of the file /api/admin/store/product/list. The ma ...
Continue Reading
March 23, 2023
A vulnerability was found in Zhong Bang CRMEB Java up to 1.3.4. It has been rated as problematic. This issue affects the function save of the file /api/admin/store/product/save. The manipulation leads ...
Continue Reading
March 23, 2023
Post ContentRead More ...
Continue Reading
March 23, 2023
### Summary CWE-532: Insertion of Sensitive Information into Log File discovered in v9.23.1. The `directus_refresh_token` is not redacted properly from the log outputs and can be used to impersonate u ...
Continue Reading
March 23, 2023
### Impact All versions of Argo CD starting with v0.5.0 are vulnerable to an information disclosure bug allowing unauthorized users to enumerate application names by inspecting API error messages. An ...
Continue Reading
March 23, 2023
Security Fix(es): * ArgoCD: Authenticated but unauthorized users may enumerate Application names via the API (CVE-2022-41354) For more details about the security issue(s), including the impact, a CVSS ...
Continue Reading
March 23, 2023
Back to Main
