** UNSUPPORTED WHEN ASSIGNED ** Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1 ...
Continue Reading
February 06, 2024
A directory traversal vulnerability in the SOAP Server integrated in Atos Unify OpenScape Voice V10 before V10R3.26.1 allows a remote attacker to view the contents of arbitrary files in the local file ...
Continue Reading
February 06, 2024
CVE-2024-21893 is server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) and Ivanti Neurons for ZTA allows an attack ...
Continue Reading
February 03, 2024
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): php: 1-byte array overrun in common path resolve code (CVE-2023-0568) php: DoS vulnerability wh ...
Continue Reading
February 01, 2024
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): php: 1-byte array overrun in common path resolve code (CVE-2023-0568) php: DoS vulnerability wh ...
Continue Reading
February 01, 2024
In PHP versions 8.0. before 8.0.29, 8.1. before 8.1.20, 8.2.* before 8.2.7 when using SOAP HTTP Digest Authentication, random value generator was not checked for failure, and was using narrower range ...
Continue Reading
January 29, 2024
In PHP versions 7.3.x below 7.3.27, 7.4.x below 7.4.15 and 8.0.x below 8.0.2, when using SOAP extension to connect to a SOAP server, a malicious SOAP server could return malformed XML data as a respon ...
Continue Reading
January 29, 2024
In PHP versions 8.0. before 8.0.29, 8.1. before 8.1.20, 8.2.* before 8.2.7 when using SOAP HTTP Digest Authentication, random value generator was not checked for failure, and was using narrower range ...
Continue Reading
January 29, 2024
Back to Main
