The MailArchiver plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an email subject in versions up to, and including, 2.10.1 due to insufficient input sanitization and output escap ...

Continue Reading

August 30, 2023

## Summary IBM Maximo Application Suite uses gRPC package which is vulnerable to CVE-2023-32731. ## Vulnerability Details ** CVEID: **[CVE-2023-32731]() ** DESCRIPTION: **gRPC could allow a remote att ...

Continue Reading

August 29, 2023

Saho’s attendance devices ADM100 and ADM-100FP have a vulnerability of missing authentication for critical functions. An unauthenticated remote attacker can execute system commands in partial web ...

Continue Reading

August 28, 2023

Dispatch is an open source security incident management tool. The server response includes the JWT Secret Key used for signing JWT tokens in error message when the `Dispatch Plugin - Basic Authenticat ...

Continue Reading

August 27, 2023

There exists an vulnerability causing an abort() to be called in gRPC.  The following headers cause gRPC's C++ implementation to abort() when called via http2: te: x (x != trailers) :scheme: x (x ! ...

Continue Reading

August 27, 2023

Updates of ['grpc'] packages of Photon OS have been released.Read More ...

Continue Reading

August 27, 2023

Updates of ['linux-rt', 'python3', 'linux-aws', 'linux', 'linux-secure'] packages of Photon OS have been released.Read More ...

Continue Reading

August 26, 2023

e-Excellence U-Office Force has a path traversal vulnerability within its file uploading and downloading functions. An unauthenticated remote attacker can exploit this vulnerability to read arbitrary ...

Continue Reading

August 25, 2023

Post ContentRead More ...

Continue Reading

August 24, 2023

Post ContentRead More ...

Continue Reading

August 24, 2023