Exploit for Path Traversal in Owasp Enterprise Security Api

# CVE-2022-23457 ESAPI (The OWASP Enterprise Security API) is a...Read More ...

Continue Reading

December 22, 2022

CVSS3 - CRITICAL

CVSS2 - HIGH

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Freshrss

# CVE-2022-23497 FreshRSS is a free, self-hostable RSS aggregat...Read More ...

Continue Reading

December 22, 2022

CVSS3 - HIGH

Exploit for Uncontrolled Resource Consumption in Openexr

# CVE-2021-3479 There's a flaw in OpenEXR's Scanline API functi...Read More ...

Continue Reading

December 22, 2022

CVSS3 - MEDIUM

CVSS2 - MEDIUM

Exploit for Cross-site Scripting in Jenkins Checkmarx

# CVE-2022-46684 Jenkins Checkmarx Plugin 2022.3.3 and earlier ...Read More ...

Continue Reading

December 22, 2022

CVSS3 - MEDIUM

Exploit for Incorrect Permission Assignment for Critical Resource in Hasura Graphql Engine

# CVE-2022-46792 Hasura GraphQL Engine before 2.15.2 mishandles...Read More ...

Continue Reading

December 22, 2022

CVSS3 - HIGH

Fedora 35 : python3.11 (2022-a04a020e48)

The remote Fedora 35 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-a04a020e48 advisory. - Python 3.9.x and 3.10.x through 3.10.8 on Linux ...

Continue Reading

December 22, 2022

CVE-2022-46493

Default version of nbnbk was discovered to contain an arbitrary file upload vulnerability via the component /api/User/download_img.Read More ...

Continue Reading

December 22, 2022

Lego’s Bricklink steps on cross site scripting blocks

If you build it, they will come. In Lego's case, they built it and certain security flaws meant someone could have taken it all apart. PCMag reports that [flaws in Lego's Bricklink service]() meant th ...

Continue Reading

December 22, 2022

1 9,044 9,045 9,046 9,047 9,048 9,321

Back to Main
Subscribe for the latest news: