It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2080 advisory. - An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult ...
Continue Reading
June 08, 2023
**Issue Overview:** An untrusted deserialization was found in the org.apache.xmlrpc.parser.XmlRpcResponseParser:addResult method of Apache XML-RPC (aka ws-xmlrpc) library. A malicious XML-RPC server c ...
Continue Reading
June 08, 2023
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Invalid input to the function xmlrpc_decode() can lead to an invalid memory access (heap o ...
Continue Reading
May 25, 2023
The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the server_title field. This occurs in Lib/DocXMLRPCServer.py in Python 2.x, and in Li ...
Continue Reading
May 25, 2023
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. xmlrpc_decode() can allow a hostile XMLRPC server to cause PHP to read memory outside of a ...
Continue Reading
May 25, 2023
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3291 advisory. - The cgi gem before 0.1.0.2, 0.2.x befor ...
Continue Reading
May 24, 2023
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a l ...
Continue Reading
May 24, 2023
php-pecl-apcu [5.1.21-1] - update to 5.1.21 for PHP 8.1 #2070040 php-pecl-rrd [2.0.3-4] - build for PHP 8.1 #2070040 php-pecl-xdebug3 [3.1.4-1] - update to 3.1.4 for PHP 8.1 #2070040 php-pecl-zip [1.2 ...
Continue Reading
May 15, 2023
Back to Main
