Web applications and Project Loom

## Introduction Project Loom aims to bring "easy-to-use, high-throughput, lightweight concurrency" to the JRE. One feature introduced by Project Loom is virtual threads. In this blog post, we'll be ex ...

Continue Reading

February 27, 2023

Messages can still be seen on conversation after expiring when cron is misconfigured

## Description ### Impact When cron jobs were misconfigured and therefore messages are not expired, the API would still return them while they were then hidden by the frontend code. ### Patches It is ...

Continue Reading

February 27, 2023

CVE-2022-34908

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It possesses an authentication mechanism; however, some features do not require any token or cookie in a request. The ...

Continue Reading

February 27, 2023

CVE-2022-34910

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It uses a local database to store data and accounts. However, the password is stored in cleartext. Therefore, an atta ...

Continue Reading

February 27, 2023

CVE-2022-34909

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It allows SQL Injection, by which an attacker can bypass authentication and retrieve data that is stored in the datab ...

Continue Reading

February 27, 2023

CVE-2023-24206

Davinci v0.3.0-rc was discovered to contain a SQL injection vulnerability via the copyDisplay function.Read More ...

Continue Reading

February 27, 2023

CVE-2023-1067

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.5.18.Read More ...

Continue Reading

February 27, 2023

CVE-2023-1068

The Download Read More Excerpt Link plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.0. This is due to missing or incorrect nonce validation on th ...

Continue Reading

February 27, 2023

1 2 3 4 5 6 283

Back to Main
Subscribe for the latest news: