CVE-2023-2639
The underlying feedback mechanism of Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that t ...
Continue Reading
August 15, 2023
CVE-2023-2850
NodeBB is affected by a Cross-Site WebSocket Hijacking vulnerability due to missing validation of the request origin. Exploitation of this vulnerability allows certain user information to be extracted ...
Continue Reading
August 15, 2023
CVE-2023-2281
When archiving a team, Mattermost fails to sanitize the related Websocket event sent to currently connected clients. This allows the clients to see the name, display name, description, and other data ...
Continue Reading
August 15, 2023
CVE-2023-28768
Improper frame handling in the Zyxel XGS2220-30 firmware version V4.80(ABXN.1), XMG1930-30 firmware version V4.80(ACAR.1), and XS1930-10 firmware version V4.80(ABQE.1) could allow an unauthenticate ...
Continue Reading
August 14, 2023
Request-Baskets v1.2.1 – Server-side request forgery Vulnerability
Post ContentRead More ...
Continue Reading
August 14, 2023
Exploit for Server-Side Request Forgery in Rbaskets Request Baskets
# CVE-2023-27163 > Request-Baskets v1.2.1 - Server-side reques...Read More ...
Continue Reading
August 13, 2023
Cross-Site Request Forgery (CSRF)
gitlab is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists in the GraphQL API, allowing an attacker to call mutations as the victimRead More ...
Continue Reading
August 12, 2023
Information Disclosure
gitlab is vulnerable to Information Disclosure. This vulnerability occurs due to a flaw in the way that GitLab handles GraphQL queries. An attacker can exploit this vulnerability to access project det ...
Continue Reading
August 12, 2023
Cross-Site Leak
gitlab is vulnerable to Cross-Site Leak. The vulnerability exists in the OAuth flow, allowing an attacker to leak an OAuth access token by getting the victim to visit a malicious page with SafariRead ...
Continue Reading
August 12, 2023
Improper Authorization
gitlab is vulnerable to Improper Authorization. The vulnerability exists due to improper access to some particular fields through the GraphQL API which allows an attacker to perform unauthorized actio ...
Continue Reading
August 11, 2023
