CVSS3 - CRITICAL - API Security Blog

(RHSA-2023:4238) Moderate: Red Hat OpenShift Data Foundation 4.11.9 security and bug fix update

Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, productio ...

July 20, 2023

CVE-2023-37289

It is identified a vulnerability of Unrestricted Upload of File with Dangerous Type in the file uploading function in InfoDoc Document On-line Submission and Approval System, which allows an unauthen ...

July 20, 2023

grafana security update

[9.0.9-3] - resolve CVE-2023-3128 grafana: Remove Email Lookup from oauth integrations (rhbz#2213701 rhbz#2213626)Read More ...

July 20, 2023

grafana security update

An update is available for grafana. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerabil ...

July 19, 2023

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

![](https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2022/10/05080519/abstract_binary_connection-990x400.jpg) On March 14, 2023, Microsoft published [a blogpost]() describing an Outlo ...

July 19, 2023

CVE-2023-21974

Vulnerability in the Application Express Team Calendar Plugin product of Oracle Application Express (component: User Account). Supported versions that are affected are Application Express Team Calend ...

July 18, 2023

CVE-2023-21975

Vulnerability in the Application Express Customers Plugin product of Oracle Application Express (component: User Account). Supported versions that are affected are Application Express Customers Plugi ...

July 18, 2023

CVE-2023-3376

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Digital Strategy Zekiweb allows SQL Injection.This issue affects Zekiweb: before 2.Read More ...

July 17, 2023

CVE-2023-2963

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Oliva Expertise Oliva Expertise EKS allows SQL Injection.This issue affects Oliva Expertise EKS: b ...

July 17, 2023

Metasploit Weekly Wrap-Up

## Authentication bypass in Wordpress Plugin WooCommerce Payments ![Metasploit Weekly Wrap-Up](https://blog.rapid7.com/content/images/2023/07/metasploit-sky.png) This week's Metasploit release include ...

July 14, 2023