(RHSA-2023:4507) Important: Red Hat JBoss Enterprise Application Platform security update
Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.12 serve ...
Continue Reading
August 07, 2023
Exploit for Missing Authorization in Sitemap Project Sitemap
# CVE-2022-0952 Sitemap by click5 < 1.0.36 - Unauthenticated ...Read More ...
Continue Reading
August 07, 2023
July 7th 2022 Security Releases
# Thursday February 16 2023 Security Releases By Michael Dawson, 16 Feb 2023 # _(Update 16-February-2023)_ Security releases available Updates are now available for the v19.x, v18.x, v16.x, and v14.x ...
Continue Reading
August 07, 2023
CVE-2023-4140
The WP Ultimate CSV Importer plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.9.8 due to insufficient restriction on the 'get_header_values' function. Thi ...
Continue Reading
August 04, 2023
CVE-2023-4141
The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 7.9.8 via the '->cus2' parameter. This allows authenticated attackers with ...
Continue Reading
August 04, 2023
CVE-2023-4139
The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Sensitive Information Exposure via Directory Listing due to missing restriction in export folder indexing in versions up to, and inc ...
Continue Reading
August 04, 2023
CVE-2023-4142
The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 7.9.8 via the '->cus1' parameter. This allows authenticated attackers with ...
Continue Reading
August 04, 2023
CVE-2023-3247
In PHP versions 8.0.* before 8.0.29, 8.1.* before 8.1.20, 8.2.* before 8.2.7 when using SOAP HTTP Digest Authentication, random value generator was not checked for failure, and was using narrower rang ...
Continue Reading
August 04, 2023
CVE-2023-37554
In multiple versions of multiple Codesys products, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpAppBP component ...
Continue Reading
August 03, 2023
CVE-2023-37550
In multiple Codesys products in multiple versions, after successful authentication as a user, specific crafted network communication requests with inconsistent content can cause the CmpApp component t ...
Continue Reading
August 03, 2023
