Versions of the package eta before 2.0.0 are vulnerable to Remote Code Execution (RCE) by overwriting template engine configuration variables with view options received from The Express render API. ** ...
Continue Reading
February 01, 2023
### Impact XSS attack - anyone using the Express API is impacted ### Patches The problem has been resolved. Users should upgrade to version 2.0.0. ### Workarounds Don't pass user supplied data directl ...
Continue Reading
February 01, 2023
### Impact XSS attack - anyone using the Express API is impacted ### Patches The problem has been resolved. Users should upgrade to version 2.0.0. ### Workarounds Don't pass user supplied data directl ...
Continue Reading
February 01, 2023
## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS ## Packages * nova - OpenStack Compute cloud infrastructure Guillaume Espanel, Pierre Libeau, Arnaud Morin, and Damien Rannou d ...
Continue Reading
February 01, 2023
## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS ## Packages * glance - OpenStack Image Registry and Delivery Service Guillaume Espanel, Pierre Libeau, Arnaud Morin, and Damien ...
Continue Reading
February 01, 2023
## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS ## Packages * cinder - OpenStack storage service Guillaume Espanel, Pierre Libeau, Arnaud Morin, and Damien Rannou discovered t ...
Continue Reading
February 01, 2023
An issue was discovered in LIVEBOX Collaboration vDesk before v018. Broken Access Control can occur under the /api/v1/registration/validateEmail endpoint, the /api/v1/vdeskintegration/user/adduser end ...
Continue Reading
February 01, 2023
[]() Do you know where your secrets are? If not, ...
Continue Reading
January 31, 2023
Back to Main
