The WP Remote Users Sync plugin for WordPress is vulnerable to unauthorized access of data and addition of data due to a missing capability check on the 'refresh_logs_async' functions in versions up t ...
Continue Reading
August 16, 2023
Versions of the package @excalidraw/excalidraw from 0.0.0 are vulnerable to Cross-site Scripting (XSS) via embedded links in whiteboard objects due to improper input sanitization.Read More ...
Continue Reading
August 16, 2023
Improper authorization in the custom URL scheme handler in "Rikunabi NEXT" App for Android prior to ver. 11.5.0 allows a malicious intent to lead the vulnerable App to access an arbitrary website.Read ...
Continue Reading
August 16, 2023
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...
Continue Reading
August 16, 2023
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...
Continue Reading
August 16, 2023
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...
Continue Reading
August 16, 2023
Pikachu v1.0 was discovered to contain a SQL injection vulnerability via the $username parameter at incfunction.php.Read More ...
Continue Reading
August 16, 2023
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen⢠Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of conf ...
Continue Reading
August 16, 2023
Back to Main
