lava is vulnerable to Denial Of Service (DoS). The vulnerability exists because the users with valid credentials can submit crafted XMLRPC requests that cause a recursive XML entity expansion, leading ...
Continue Reading
March 29, 2023
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. Django is a high-level Python Web framework that encourages rapid development and a c ...
Continue Reading
March 28, 2023
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-068 advisory. - xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, such as chec ...
Continue Reading
March 22, 2023
- CVE-2023-0567: crypt: Fix validation of malformed BCrypt hashes - CVE-2023-0568: Fix array overrun when appending slash to paths - CVE-2023-0662: Fix DoS vulnerability when parsing multipart request ...
Continue Reading
March 09, 2023
## Releases * Ubuntu 16.04 ESM ## Packages * php7.0 - HTML-embedded scripting language interpreter It was discovered that PHP incorrectly handled certain gzip files. An attacker could possibly use ...
Continue Reading
March 02, 2023
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5902-1 advisory. - In PHP 8.0.X before 8.0.28, ...
Continue Reading
March 01, 2023
## Releases * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS * Ubuntu 18.04 LTS ## Packages * php7.2 - HTML-embedded scripting language interpreter * php7.4 - HTML-embedded scripting l ...
Continue Reading
February 28, 2023
The remote SUSE Linux SLED15 / SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0513-1 advisory. - Password_verify() a ...
Continue Reading
February 25, 2023
Back to Main
