Last week, there were 61 vulnerabilities disclosed in 54 WordPress Plugins and 1 WordPress themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 28 Vulnerabi ...
Continue Reading
July 13, 2023
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3494 advisory. - Doorkeeper is an OAuth 2 provider for Ruby on Rails / Grape. Prior to ...
Continue Reading
July 13, 2023
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:4030 advisory. - Grafana is validating Azure AD accounts based on ...
Continue Reading
July 13, 2023
The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:4030 advisory. - Grafana is validating Azure AD accounts based on the email cla ...
Continue Reading
July 13, 2023
Jenkins Assembla Auth Plugin 1.14 and earlier does not implement a state parameter in its OAuth flow, a unique and non-guessable value associated with each authentication request. This vulnerability a ...
Continue Reading
July 13, 2023
Jenkins Assembla Auth Plugin 1.14 and earlier does not implement a state parameter in its OAuth flow, a unique and non-guessable value associated with each authentication request. This vulnerability a ...
Continue Reading
July 12, 2023
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Security Fix(es): * grafana: account takeover possible when using Azure AD OAuth (CVE ...
Continue Reading
July 12, 2023
It was discovered that there was an issue in ruby-doorkeeper, an OAuth2 provider for Ruby on Rails applications. Doorkeeper automatically processed authorization requests without user consent for publ ...
Continue Reading
July 12, 2023
Back to Main
