A vulnerability has been found in ThingsBoard up to 3.7.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component HTTP RPC API. The manipulation lead ...
Continue Reading
May 23, 2025
A vulnerability in a specific REST API endpoint of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to upload or delete files on an affected device. This vulnerability exists b ...
Continue Reading
May 23, 2025
Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset ...
Continue Reading
May 23, 2025
A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS X-Series Servers could allow an authenticated, remote attacker with administrative privileges to per ...
Continue Reading
May 23, 2025
In JetBrains TeamCity before 2024.07.3 password could be exposed via Sonar runner REST...Read More ...
Continue Reading
May 23, 2025
In Mastodon 4.1.6, API endpoint rate limiting can be bypassed by setting a crafted HTTP request...Read More ...
Continue Reading
May 23, 2025
The “socket” module provides a pure-Python fallback to the socket.socketpair() function for platforms that don’t support AF_UNIX, such as Windows. This pure-Python implementation uses AF_INET or ...
Continue Reading
May 23, 2025
Khoj is an application that creates personal AI agents. The Automation feature allows a user to insert arbitrary HTML inside the task instructions, resulting in a Stored XSS. The q parameter for the / ...
Continue Reading
May 23, 2025
Back to Main
