Category: CVSS3 - CRITICAL
Exploit for SQL Injection in Progress Moveit Cloud

Read More ...

Continue Reading
Security Bulletin: IBM Edge Application Manager 4.5.2 addresses the security vulnerabilities listed in the CVEs below.

## Summary IBM Edge Application Manager 4.5.2 addresses the security vulnerabilities listed in the CVEs below. ## Vulnerability Details ** CVEID: **[CVE-2022-25883]() ** DESCRIPTION: **Node.js semver ...

Continue Reading
CVE-2023-3162

The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.7.7. This is due to insufficient verification on the user bein ...

Continue Reading
(RHSA-2023:4892) Moderate: Migration Toolkit for Containers (MTC) 1.7.12 security and bug fix update

The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the M ...

Continue Reading
IT threat evolution in Q2 2023

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2023/08/29134544/sl-random-code-bug-malware-red-blue-1200-990x400.jpg) * **IT threat evolution in Q2 2023** * [IT threat evolu ...

Continue Reading
CVE-2023-4596

The Forminator plugin for WordPress is vulnerable to arbitrary file uploads due to file type validation occurring after a file has been uploaded to the server in the upload_post_image() function in ve ...

Continue Reading
Security Bulletin: IBM i Modernization Engine for Lifecycle Integration is vulnerable to multiple vulnerabilities

## Summary There are multiple vulnerabilities in components of IBM i Modernization Engine for Lifecycle Integration as described in the Vulnerability Details section. Google Guava and Apache James MIM ...

Continue Reading
Security Bulletin: Operations Dashboard is vulnerable to remote code execution, privilege escalation, and denial of service due to multiple Go vulnerabilities

## Summary Operations Dashboard is vulnerable to remote code execution, privilege escalation, and denial of service due to multiple Go vulnerabilities with details below (CVE-2023-29405, CVE-2023-2940 ...

Continue Reading
CVE-2023-38028

Saho’s attendance devices ADM100 and ADM-100FP have insufficient authentication. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication to read system informat ...

Continue Reading
CVE-2023-38029

Saho’s attendance devices ADM100 and ADM-100FP has insufficient filtering for special characters and file type within their file uploading function. A unauthenticate remote attacker authenticated ...

Continue Reading
Load more