**Issue Overview:** The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. ...

Continue Reading

August 09, 2023

gitlab is vulnerable to Information Disclosure. The vulnerability may allow an authenticated user to unmask the Discord Webhook URL through viewing the raw API response.Read More ...

Continue Reading

August 09, 2023

gitlab is vulnerable to Information Disclosure. Non-project members are able to retrieve release descriptions via the API, even if the release visibility is restricted to project members only in the p ...

Continue Reading

August 09, 2023

chromium is vulnerable to Insufficient Policy Enforcement. Insufficient policy enforcement in File System API allows a remote attacker to bypass filesystem restrictions via a crafted HTML page.Read Mo ...

Continue Reading

August 09, 2023

.NET Framework Spoofing VulnerabilityRead More ...

Continue Reading

August 09, 2023

.NET Framework Spoofing VulnerabilityRead More ...

Continue Reading

August 09, 2023

## Summary This fix upgrades to node 18.16.1. ## Vulnerability Details ** CVEID: **[CVE-2023-30584]() ** DESCRIPTION: **Node.js could allow a remote attacker to bypass security restrictions, caused by ...

Continue Reading

August 09, 2023

An update is available for module.mod_auth_openidc, cjose, module.cjose, mod_auth_openidc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a det ...

Continue Reading

August 09, 2023