An unauthorized user could gain account access to IQ Wifi 6 versions prior to 2.0.2 by conducting a brute force authentication attack.Read More ...
Continue Reading
July 25, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Michael Winkler teachPress plugin Read More ...
Continue Reading
July 25, 2023
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in GrandSlambert Login Configurator plugin Read More ...
Continue Reading
July 25, 2023
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in cththemes Balkon plugin Read More ...
Continue Reading
July 25, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpxpo PostX â Gutenberg Post Grid Blocks plugin Read More ...
Continue Reading
July 25, 2023
Java object deserialization issue in Jackrabbit webapp/standalone on all platforms allows attacker to remotely execute code via RMIVersions up to (including) 2.20.10 (stable branch) and 2.21.17 (unsta ...
Continue Reading
July 25, 2023
In JetBrains TeamCity before 2023.05.2 a ReDoS attack was possible via integration with issue trackersRead More ...
Continue Reading
July 25, 2023
Strapi is an open-source headless content management system. Prior to version 4.10.8, anyone (Strapi developers, users, plugins) can make every attribute of a Content-Type public without knowing it. T ...
Continue Reading
July 25, 2023
Back to Main
