A vulnerability in Fibaro Motion Sensor firmware v3.4 allows attackers to cause a Denial of Service (DoS) via a crafted Z-Wave message.Read More ...
Continue Reading
June 20, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in John Brien WordPress NextGen GalleryView plugin Read More ...
Continue Reading
June 20, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Internet Marketing Dojo WP Affiliate Links plugin Read More ...
Continue Reading
June 20, 2023
The CMS Commander plugin for WordPress is vulnerable to authorization bypass due to the use of an insufficiently unique cryptographic signature on the 'cmsc_add_site' function in versions up to, and i ...
Continue Reading
June 20, 2023
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in EventPrime plugin Read More ...
Continue Reading
June 20, 2023
Default permissions for a properties file were too permissive. Local system users could read potentially sensitive information. We updated the default permissions for noreply.properties set during pac ...
Continue Reading
June 20, 2023
When adding an external mail account, processing of POP3 "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue POP3 service could trigger requests that lead to e ...
Continue Reading
June 20, 2023
When adding an external mail account, processing of IMAP "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue IMAP service could trigger requests that lead to e ...
Continue Reading
June 20, 2023
Back to Main
