CVE-2022-24190
The /device/acceptBind end-point for Ourphoto App version 1.4.1 does not require authentication or authorization. The user_token header is not implemented or present on this end-point....
USN-5746-1: HarfBuzz vulnerability
Behzad Najjarpour Jabbari discovered that HarfBuzz incorrectly handled certain inputs. A remote attacker could possibly use this issue to cause a denial of service. Read...
moodle-3.11.11-1.fc35
FEDORA-2022-cb7084ae1c Packages in this update: moodle-3.11.11-1.fc35 Update description: Fixes for multiple CVEs Read More
moodle-3.11.11-1.fc36
FEDORA-2022-f7fdcb1820 Packages in this update: moodle-3.11.11-1.fc36 Update description: Fixes for multiple CVEs Read More
moodle-4.1-1.fc37
FEDORA-2022-74a9c8e95f Packages in this update: moodle-4.1-1.fc37 Update description: Fixes for multiple CVEs Read More
USN-5689-2: Perl vulnerability
USN-5689-1 fixed a vulnerability in Perl. This update provides the corresponding update for Ubuntu 22.10. Original advisory details: It was discovered that Perl incorrectly handled...
CVE-2021-45036
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against...
USN-5745-1: shadow vulnerability
Florian Weimer discovered that shadow was not properly copying and removing user directory trees, which could lead to a race condition. A local attacker could...
CVE-2022-2311
The Find and Replace All WordPress plugin before 1.3 does not sanitize and escape some parameters from its setting page before outputting them back to...
CVE-2021-25059
The Download Plugin WordPress plugin before 2.0.0 does not properly validate a user has the required privileges to access a backup's nonce identifier, which may...