CVE-2023-28152

An issue was discovered in Independentsoft JWord before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.Read More ...

Continue Reading

24 марта, 2023

Hippo4j privilege escalation issue

An issue found in OpenGoofy Hippo4j v.1.4.3 allows attackers to escalate privileges via the ThreadPoolController of the tenant Management module.Read More ...

Continue Reading

24 марта, 2023

Joomla! 4.2.7 Unauthenticated Information Disclosure

Post ContentRead More ...

Continue Reading

24 марта, 2023

CVSS3 - MEDIUM

Bitbucket 7.0.0 Remote Command Execution

Post ContentRead More ...

Continue Reading

24 марта, 2023

CVSS3 - HIGH

Critical WooCommerce Payments Plugin Flaw Patched for 500,000+ WordPress Sites

[![Wordpress WooCommerce](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)]() Patches have been released for a critical security flaw ...

Continue Reading

24 марта, 2023

AlmaLinux 8 : openssl (ALSA-2023:1405)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:1405 advisory. - A timing based side channel exists in the OpenSSL RSA ...

Continue Reading

24 марта, 2023

CVSS3 - HIGH

CVE-2023-28442

GeoNode is an open source platform that facilitates the creation, sharing, and collaborative use of geospatial data. Prior to versions 2.20.6, 2.19.6, and 2.18.7, anonymous users can obtain sensitive ...

Continue Reading

24 марта, 2023

CVE-2023-28443

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading

24 марта, 2023

1 986 987 988 989 990 1 387

Back to Main
Subscribe for the latest news: