Potential Cross-Site Scripting in ArcSight Logger versions prior to 7.3.0Read More ...
Continue Reading
June 14, 2023
Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, if a site has modified their general c ...
Continue Reading
June 14, 2023
Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, the lack of restrictions on the iFrame ...
Continue Reading
June 14, 2023
Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.Read More ...
Continue Reading
June 14, 2023
The Alaris Infusion Central software, versions 1.1 to 1.3.2, may contain a recoverable password after the installation. No patient health data is stored in the database, although some site installatio ...
Continue Reading
June 13, 2023
The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that t ...
Continue Reading
June 13, 2023
An arbitrary file upload vulnerability in the /fileUpload.lib.php component of Chamilo 1.11.* up to v1.11.18 allows attackers to execute arbitrary code via uploading a crafted SVG file.Read More ...
Continue Reading
June 13, 2023
A Reflected XSS was discovered in HotelDruid version 3.0.5, an attacker can issue malicious code/command on affected webpage's parameter to trick user on browser and/or exfiltrate data.Read More ...
Continue Reading
June 13, 2023
Back to Main
