** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as problematic has been found in mback2k mh_httpbl Extension up to 1.1.7 on TYPO3. This affects the function stopOutput of the file class.tx_mhhttpbl.php. The manipulation of the argument $_SERVER[‘REMOTE_ADDR’] leads to cross site scripting. It is possible to initiate the attack remotely. Upgrading to version 1.1.8 is able to address this issue. The name of the patch is a754bf306a433a8c18b55e25595593e8f19b9463. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230391. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Advisories

CVE-2015-10110

June 2, 2023

Read Time:26 Second

A vulnerability classified as problematic was found in ruddernation TinyChat Room Spy Plugin up to 1.2.8 on WordPress. This vulnerability affects the function wp_show_room_spy of the file room-spy.php. The manipulation of the argument room leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 1.2.9 is able to address this issue. The name of the patch is ab72627a963d61fb3bc31018e3855b08dc94a979. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-230392.

Cyber Security News

Daily Archives: June 2, 2023

Chinese Phishing Gang “PostalFurious” Expands Campaign

Kaspersky Says it is Being Targeted By Zero-Click Exploits

matrix-synapse-1.63.1-3.fc37

FEDORA-2023-eb65439ec0

Packages in this update:

Update description:

python-flask-restx-1.1.0-1.el9

FEDORA-EPEL-2023-eacf1a60fb

Packages in this update:

Update description:

CVE-2016-15032

CVE-2015-10110

News, Advisories and much more