CVE-2023-4276
The Absolute Privacy plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1. This is due to missing nonce validation on the 'abpr_profileShortcode' func ...
Continue Reading
August 10, 2023
Exploit for Server-Side Request Forgery in Rbaskets Request Baskets
# CVE-2023-27163 - Request Baskets SSRF Request Baskets SSRF P...Read More ...
Continue Reading
August 10, 2023
Denial Of Service (DoS)
gitlab is vulnerable to Denial Of Service (DoS). The vulnerability exists due to the lack of length validation of the library, which allows an attacker to create a large Issue description via GraphQL, ...
Continue Reading
August 10, 2023
[SECURITY] [DSA 5473-1] orthanc security update
- ------------------------------------------------------------------------- Debian Security Advisory DSA-5473-1 [email protected] https://www.debian.org/security/ ...
Continue Reading
August 09, 2023
Exploit for Missing Authorization in Wpdeveloper Simple 301 Redirects
# CVE-2021-24356 Simple 301 Redirects by BetterLinks - 2.0.0 â 2...Read More ...
Continue Reading
August 09, 2023
Security Bulletin: IBM MQ is affected by multiple Angular JS vulnerabilities.
## Summary IBM MQ has resolved multiple Angular JS vulnerabilities (CVE-2022-25844, CVE-2023-26116, CVE-2023-26117, CVE-2023-26118, CVE-2022-25869). Angular JS is used in Dashboard Web Console. ## Vul ...
Continue Reading
August 09, 2023
Security Bulletin: IBM MQ Appliance is affected by multiple AngularJS vulnerabilities
## Summary IBM MQ Appliance has resolved multiple AngularJS vulnerabilities (CVE-2023-26117, CVE-2023-26116, CVE-2023-26118, CVE-2022-25869, CVE-2022-25844). ## Vulnerability Details **CVEID: **[CVE-2 ...
Continue Reading
August 09, 2023
CVE-2023-37858
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated, remote attacker with admin privileges is able to read hardcoded cryptographic keys allowing to decrypt an en ...
Continue Reading
August 09, 2023
CVE-2023-37862
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an unauthenticated remote attacker can access upload-functions of the HTTP API. This might cause certificate errors for SSL-co ...
Continue Reading
August 09, 2023
CVE-2023-37861
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 an authenticated remote attacker can execute code with root permissions with a specially crafted HTTP POST when uploading a ce ...
Continue Reading
August 09, 2023
