CVE-2021-3827

A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. By exploiting this behavior, an attacker can bypass the MFA authentication by sending ...

Continue Reading

August 23, 2022

CVE-2021-3690

A flaw was found in Undertow. A buffer leak on the incoming WebSocket PONG message may lead to memory exhaustion. This flaw allows an attacker to cause a denial of service. The highest threat from thi ...

Continue Reading

August 23, 2022

CVE-2022-35115

IceWarp WebClient DC2 - Update 2 Build 9 (13.0.2.9) was discovered to contain a SQL injection vulnerability via the search parameter at /webmail/server/webmail.php.Read More ...

Continue Reading

August 23, 2022

CVE-2022-1513

A potential vulnerability was reported in Lenovo PCManager prior to version 5.0.10.4191 that may allow code execution when visiting a specially crafted website.Read More ...

Continue Reading

August 23, 2022

CVE-2022-38172

ServiceNow through San Diego Patch 3 allows XSS via the name field during creation of a new dashboard for the Performance Analytics dashboard.Read More ...

Continue Reading

August 23, 2022

CVE-2022-38463

ServiceNow through San Diego Patch 4b and Patch 6 allows reflected XSS in the logout functionality.Read More ...

Continue Reading

August 23, 2022

CVE-2022-37113

Bluecms 1.6 has SQL injection in line 132 of admin/area.phpRead More ...

Continue Reading

August 23, 2022

CVE-2022-37112

BlueCMS 1.6 has SQL injection in line 55 of admin/model.phpRead More ...

Continue Reading

August 23, 2022

1 2,829 2,830 2,831 2,832 2,833 3,551

Back to Main
Subscribe for the latest news: