The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:2532-1 advisory. - A flaw was found in all released versions ...
Continue Reading23 июля, 2022
Under certain circumstances, the Drupal core form API evaluates form element access incorrectly. This may lead to a user being able to alter data they should not have access to. No forms provided by D ...
Continue Reading23 июля, 2022
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5187 advisory. - Use after free in Cast UI and Toolbar. (CVE-2022-2163) - : ...
Continue Reading23 июля, 2022
The version of Microsoft Edge installed on the remote Windows host is prior to 103.0.1264.71. It is, therefore, affected by multiple vulnerabilities as referenced in the July 22, 2022 advisory. - : ...
Continue Reading23 июля, 2022
Django REST framework (aka django-rest-framework) before 3.9.1 allows XSS because the default DRF Browsable API view templates disable autoescaping.Read More ...
Continue Reading22 июля, 2022
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dsa-5186 advisory. - A flaw was found in Django REST Framework versions before 3.12.0 and b ...
Continue Reading22 июля, 2022
An access control issue in the component /api/plugin/uninstall Dataease v1.11.1 allows attackers to arbitrarily uninstall the plugin, a right normally reserved for the administrator.Read More ...
Continue Reading22 июля, 2022
An issue in the component /api/plugin/upload of Dataease v1.11.1 allows attackers to execute arbitrary code via a crafted plugin.Read More ...
Continue Reading22 июля, 2022
Back to Main