CVE-2022-43693

Concrete CMS is vulnerable to CSRF due to the lack of "State" parameter for external Concrete authentication service for users of Concrete who use the "out of the box&qu ...

Continue Reading

May 23, 2025

CVE-2022-30034

Flower, a web UI for the Celery Python RPC framework, all versions as of 05-02-2022 is vulnerable to an OAuth authentication bypass. An attacker could then access the Flower API to discover and invoke ...

Continue Reading

May 23, 2025

CVE-2022-4037

An issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versions starting from 15.7 before 15.7.2. A race condition can le ...

Continue Reading

May 23, 2025

CVE-2022-32227

A cleartext transmission of sensitive information exists in...Read More ...

Continue Reading

May 23, 2025

CVE-2022-31027

OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthenticator is provided by the OAuthenticator package, and lets users log in to a JupyterHub via CILogon. This is pr ...

Continue Reading

May 23, 2025

CVE-2022-22969

Spring Security OAuth versions 2.5.x prior to 2.5.2 and older unsupported versions are susceptible to a Denial-of-Service (DoS) attack via the initiation of the Authorization Request in an OAuth 2.0 C ...

Continue Reading

May 23, 2025

CVE-2022-31027

OAuthenticator is an OAuth token library for the JupyerHub login handler. CILogonOAuthenticator is provided by the OAuthenticator package, and lets users log in to a JupyterHub via CILogon. This is pr ...

Continue Reading

May 23, 2025

CVE-2022-32227

A cleartext transmission of sensitive information exists in...Read More ...

Continue Reading

May 23, 2025

1 119 120 121 122 123 429

Back to Main
Subscribe for the latest news: