Design/Logic Flaw

Certain HP OfficeJet Pro printers are potentially vulnerable to a Denial of Service when sending a SOAP message to the service on TCP port 3911 that contains a body but no...Read More ...

Continue Reading
Command injection

A Command Injection vulnerability exists in NETGEAR WNR2000v4 version 1.0.0.70. When using HTTP for SOAP authentication, command execution occurs during the process after successful...Read More ...

Continue Reading
Input validation

** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1 ...

Continue Reading
Directory traversal

A directory traversal vulnerability in the SOAP Server integrated in Atos Unify OpenScape Voice V10 before V10R3.26.1 allows a remote attacker to view the contents of arbitrary files in the local file ...

Continue Reading
Exploit for Server-Side Request Forgery in Ivanti Connect Secure

CVE-2024-21893 is server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attack ...

Continue Reading
Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): php: 1-byte array overrun in common path resolve code (CVE-2023-0568) php: DoS vulnerability wh ...

Continue Reading
Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): php: 1-byte array overrun in common path resolve code (CVE-2023-0568) php: DoS vulnerability wh ...

Continue Reading
BIT-php-2023-3247

In PHP versions 8.0. before 8.0.29, 8.1. before 8.1.20, 8.2.* before 8.2.7 when using SOAP HTTP Digest Authentication, random value generator was not checked for failure, and was using narrower range ...

Continue Reading

Back to Main

Subscribe for the latest news: