Thank you to @beet1e(https://github.com/b33t1e) from Shanghai Ji...Read More ...
Continue Reading
July 21, 2023
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in HGiga iSherlock 4.5 (iSherlock-user modules), HGiga iSherlock 5.5 (iSherlock-user modules) a ...
Continue Reading
July 21, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by directly using input as a format string when calling syslog in logmessage_normal func ...
Continue Reading
July 21, 2023
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by lacking validation for a specific value when calling cm_processChangedConfigMsg in cc ...
Continue Reading
July 21, 2023
There is a Cross-site Scripting vulnerability in Esri Portal Sites in versions 10.8.1 â 11.1 that may allow a remote, authenticated attacker to create a crafted link which when clicked could p ...
Continue Reading
July 21, 2023
The Jupiter X Core plugin for WordPress is vulnerable to arbitrary file downloads in versions up to, and including, 2.5.0. This makes it possible for unauthenticated attackers to download the contents ...
Continue Reading
July 21, 2023
Galaxy Software Services Vitals ESP is vulnerable to using a hard-coded encryption key. An unauthenticated remote attacker can generate a valid token parameter and exploit this vulnerability to access ...
Continue Reading
July 21, 2023
There is a Cross-site Scripting vulnerability in Esri Portal Sites in versions 10.8.1 â 10.9 that may allow a remote, authenticated attacker to create a crafted link which when clicked could p ...
Continue Reading
July 21, 2023
Back to Main
