(RHSA-2023:3884) Important: Red Hat Single Sign-On 7.6.4 security update on RHEL 8
Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. This rel ...
Continue Reading
July 18, 2023
CVE-2023-2433
The YARPP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'className' parameter in versions up to, and including, 5.30.3 due to insufficient input sanitization and output escapin ...
Continue Reading
July 18, 2023
CVE-2023-3403
The ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'pm_upload_csv' function in versions up to, and including, 5.5.1. This ...
Continue Reading
July 18, 2023
CVE-2023-3708
Several themes for WordPress by DeoThemes are vulnerable to Reflected Cross-Site Scripting via breadcrumbs in various versions due to insufficient input sanitization and output escaping. This makes it ...
Continue Reading
July 18, 2023
CVE-2023-2960
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Oliva Expertise Oliva Expertise EKS allows Cross-Site Scripting (XSS).This issue affects Oliva Exp ...
Continue Reading
July 17, 2023
Connection Termination
grpc is vulnerable to Connection Termination. An attacker can terminate the connection between a HTTP2 proxy and the gRPC server by providing a `-bin` suffixed headers, which leads to a base64 encodin ...
Continue Reading
July 15, 2023
CVE-2023-24896
Dynamics 365 Finance Spoofing VulnerabilityRead More ...
Continue Reading
July 14, 2023
CVE-2023-36840
A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows a locally-based, low-privileged attacker to cause a Denial of Service (DoS ...
Continue Reading
July 14, 2023
CVE-2023-36834
An Incomplete Internal State Distinction vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX 4600 and SRX 5000 Series allows an adjacent attacker to cause a Denial ...
Continue Reading
July 14, 2023
CVE-2023-36850
An Improper Validation of Specified Index, Position, or Offset in Input vulnerability in the Connectivity Fault Management(CFM) module of Juniper Networks Junos OS on MX Series(except MPC10, MPC11 and ...
Continue Reading
July 14, 2023
