### Impact When configuring a Windows named pipe server, setting `pipe_mode` will reset `reject_remote_clients` to `false`. If the application has previously configured `reject_remote_clients` to `tru ...

Continue Reading

January 07, 2023

**This CVE addresses the partial fix for CVE-2019-25075** Gravitee API Management before 3.15.13 allows path traversal through HTML injection. A certain HTML injection combined with path traversal in ...

Continue Reading

January 07, 2023

**This CVE addresses the partial fix for CVE-2019-25075** Gravitee API Management before 3.15.13 allows path traversal through HTML injection. A certain HTML injection combined with path traversal in ...

Continue Reading

January 06, 2023

Microsoft is pleased to announce that beginning January 11, 2023, we will publish CBL-Mariner CVEs in the Security Update Guide (SUG) Common Vulnerability Reporting Framework (CVRF) API. CBL-Mariner i ...

Continue Reading

January 06, 2023

### Summary The jwt authentication function of kubepi Read More ...

Continue Reading

January 06, 2023

[![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh4da3FI8kjcBqH7VE0hkUIM_ErL97m_alt-IswglIbr0X-_AgxAfcKyIKDr0fTQXhpO9CagR33Jr3Gu1YTCChYguigB3WzpVdeRHc5XxhZB7Joisg6r3NwslqIZt2xID6tfuRVGZ ...

Continue Reading

January 06, 2023

The Nuxeo Platform is an open source content management platform for building business applications. In version 11.5.109, the `oauth2` REST API is vulnerable to Reflected Cross-Site Scripting (XSS). T ...

Continue Reading

January 06, 2023

On December 29, 2022, [Slack was alerted]() to suspicious activity on their GitHub account. Upon investigation, the company discovered that a limited number of employee tokens had been stolen and misu ...

Continue Reading

January 06, 2023