CVE-2023-4520
The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the â_fv_player_user_videoâ parameter saved via the 'save' function hooked via init, and ...
Continue Reading
August 25, 2023
CrafterCMS 4.0.2 Cross Site Scripting Vulnerability
Post ContentRead More ...
Continue Reading
August 24, 2023
Insufficient URL Validation
org.apache.nifi:nifi-dbcp-base is vulnerable to Insufficient URL Validation. The vulnerability allows an authenticated attacker with relevant privileges to bypass connection URL validation using custo ...
Continue Reading
August 23, 2023
CVE-2023-37264
Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.35.0, pipelines do not validate child UIDs, which means that a user that has access to ...
Continue Reading
August 21, 2023
CVE-2023-4040
The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the eh_callback_handler function in versions up t ...
Continue Reading
August 18, 2023
CVE-2023-36847
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system inte ...
Continue Reading
August 18, 2023
CVE-2023-36844
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series allows an unauthenticated, network-based attacker to control certain, important environments varia ...
Continue Reading
August 18, 2023
CVE-2023-36845
A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SRX Series allows an unauthenticated, network-based attacker to control certain, important e ...
Continue Reading
August 18, 2023
CVE-2023-36846
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause limited impact to the file system int ...
Continue Reading
August 17, 2023
