In habitica versions v4.119.0 through v4.232.2 are vulnerable to DOM XSS via the login page.Read More ...
Continue Reading
June 22, 2022
In motor-admin versions 0.0.1 through 0.2.56 are vulnerable to host header injection in the password reset functionality where malicious actor can send fake password reset email to arbitrary victim.Re ...
Continue Reading
June 22, 2022
In ERPNext, versions v12.0.9--v13.0.3 are vulnerable to Stored Cross-Site-Scripting (XSS), due to user input not being validated properly. A low privileged attacker could inject arbitrary code into in ...
Continue Reading
June 22, 2022
In ERPNext, versions v13.0.0-beta.13 through v13.30.0 are vulnerable to Stored XSS at the Patient History page which allows a low privilege user to conduct an account takeover attack.Read More ...
Continue Reading
June 22, 2022
In ERPNext, versions v11.0.0-beta through v13.0.2 are vulnerable to Missing Authorization, in the chat rooms functionality. A low privileged attacker can send a direct message or a group message to an ...
Continue Reading
June 22, 2022
ERPNext in versions v12.0.9-v13.0.3 are affected by a stored XSS vulnerability that allows low privileged users to store malicious scripts in the username field in my settings which can lead t ...
Continue Reading
June 22, 2022
Updates of ['linux-esx', 'linux-rt', 'linux-aws', 'linux', 'linux-secure'] packages of Photon OS have been released.Read More ...
Continue Reading
June 21, 2022
An update that fixes two vulnerabilities is now available. Description: This update for trivy fixes the following issues: trivy was updated to version 0.28.0 (boo#1199760, CVE-2022-28946): * ...
Continue Reading
June 21, 2022
Back to Main
