CVE-2023-24279

A cross-site scripting (XSS) vulnerability in Open Networking Foundation ONOS from version v1.9.0 to v2.7.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected int ...

Continue Reading

March 14, 2023

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an ...

Continue Reading

March 14, 2023

Missing proper state, nonce and PKCE checks for OAuth authentication

### Impact `next-auth` applications using OAuth provider versions before `v4.20.1` are affected. A bad actor who can spy on the victim's network or able to social engineer the victim to click a manipu ...

Continue Reading

March 13, 2023

Missing proper state, nonce and PKCE checks for OAuth authentication

### Impact `next-auth` applications using OAuth provider versions before `v4.20.1` are affected. A bad actor who can spy on the victim's network or able to social engineer the victim to click a manipu ...

Continue Reading

March 13, 2023

Shopify Cross Site Scripting Vulnerability

Post ContentRead More ...

Continue Reading

March 13, 2023

Shopify Cross Site Scripting

Post ContentRead More ...

Continue Reading

March 13, 2023

Graphicator – A GraphQL Enumeration And Extraction Tool

[![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjZZW5ExG3MGYExQ8heWkdqSQaUOcaWMMlnkulsROA2NQLh8TzfUlrfa_kEkJhQm5EeEoCr_ZOlJL_Rg54juIG4bq26QEK0vWb-1AMI2xTXI4WIcFA2BDhiA47iAQVNM0RJOE57RH ...

Continue Reading

March 13, 2023

CVE-2023-0845

Consul and Consul Enterprise allowed an authenticated user with service:write permissions to trigger a workflow that causes Consul server and client agents to crash under certain circumstances. This v ...

Continue Reading

March 13, 2023

1 8,937 8,938 8,939 8,940 8,941 9,321

Back to Main
Subscribe for the latest news: