CVE-2023-22902

Openfind Mail2000 file uploading function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can exploit this vulnerability to inject JavaScript, c ...

Continue Reading

March 27, 2023

CVSS3 - MEDIUM

Cross-Site Scripting (XSS)

github.com/mattermost/mattermost-server is vulnerable to Cross-Site Scripting (XSS) attacks. An attacker is able to send AJAX requests on behalf of the victim through OAuth flow completion endpoints v ...

Continue Reading

March 27, 2023

CVSS3 - MEDIUM

Exploit for CVE-2023-23752

# CVE-2023-23752 Joomla Unauthorized Access Vulnerability (CVE-2...Read More ...

Continue Reading

March 25, 2023

CVSS3 - MEDIUM

Tenable Sensor Proxy < 1.0.7 Multiple Vulnerabilities (TNS-2023-15)

According to its self-reported version, the Tenable Sensor Proxy application running on the remote host is version 1.0.6. It is, therefore, affected by multiple vulnerabilities in OpenSSL prior to ver ...

Continue Reading

March 24, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

Joomla! 4.2.7 Unauthenticated Information Disclosure

Post ContentRead More ...

Continue Reading

March 24, 2023

CVSS3 - MEDIUM

Bitbucket 7.0.0 Remote Command Execution

Post ContentRead More ...

Continue Reading

March 24, 2023

CVSS3 - HIGH

AlmaLinux 8 : openssl (ALSA-2023:1405)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:1405 advisory. - A timing based side channel exists in the OpenSSL RSA ...

Continue Reading

March 24, 2023

CVSS3 - HIGH

Amazon Linux 2023 : tomcat9, tomcat9-admin-webapps, tomcat9-el-3.0-api (ALAS2023-2023-140)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-140 advisory. - If Apache Tomcat 8.5.0 to 8.5.82, 9.0.0-M1 to 9.0.67, 10.0.0-M1 to 10.0.26 or 10.1.0-M1 to 10.1.0 was ...

Continue Reading

March 24, 2023

CVSS3 - HIGH

1 166 167 168 169 170 427

Back to Main
Subscribe for the latest news: