CVE-2024-39460

Jenkins Bitbucket Branch Source Plugin 886.v44cf5e4ecec5 and earlier prints the Bitbucket OAuth access token as part of the Bitbucket URL in the build log in some...Read More ...

Continue Reading

June 26, 2024

Fedora: Security Advisory for python-authlib (FEDORA-2024-7cc9a030d9)

The remote host is missing an update for...Read More ...

Continue Reading

June 21, 2024

[SECURITY] Fedora 39 Update: python-authlib-1.3.1-1.fc39

Python library for building OAuth and OpenID Connect servers. JWS, JWK, JWA, JWT are...Read More ...

Continue Reading

June 20, 2024

Improper Authentication

Firefly III is vulnerable to an Improper Authentication. The vulnerability is due to a flaw in the Firefly III OAuth flow, which may allow malicious users to bypass the MFA check, enabling them to gai ...

Continue Reading

June 19, 2024

[SECURITY] Fedora 40 Update: python-authlib-1.3.1-1.fc40

Python library for building OAuth and OpenID Connect servers. JWS, JWK, JWA, JWT are...Read More ...

Continue Reading

June 18, 2024

This Week in Spring – June 18th, 2024

Hi, Spring fans! Welcome to another installment of This Week in Spring! I've just come from Paris, France, and now I'm in equally beautiful Krakow, Poland, for the amazing Devoxx PL event. W ...

Continue Reading

June 18, 2024

Firefly III has a MFA bypass in oauth flow

Impact A MFA bypass in the Firefly III OAuth flow may allow malicious users to bypass the MFA-check. This allows malicious users to use password spraying to gain access to your Firefly III data using ...

Continue Reading

June 18, 2024

Firefly III has a MFA bypass in oauth flow

Impact A MFA bypass in the Firefly III OAuth flow may allow malicious users to bypass the MFA-check. This allows malicious users to use password spraying to gain access to your Firefly III data using ...

Continue Reading

June 17, 2024

1 258 259 260 261 262 429

Back to Main
Subscribe for the latest news: