DSA-5264 batik – security update
It was discovered that Apache Batik, a SVG library for Java, allowed attackers to run arbitrary Java code by processing a malicious SVG file. Read...
DSA-5263 chromium – security update
A security issue was discovered in Chromium, which could result in the execution of arbitrary code. Read More
CVE-2021-36898
Auth. SQL Injection (SQLi) vulnerability in Quiz And Survey Master plugin <= 7.3.4 on WordPress. Read More
CVE-2021-36864
Auth. (editor+) Reflected Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress. Read More
CVE-2021-36863 (quiz_and_survey_master)
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ExpressTech Quiz And Survey Master plugin <= 7.3.4 on WordPress. Read More
CVE-2021-38217 (semcms)
SEMCMS v 1.2 is vulnerable to SQL Injection via SEMCMS_User.php. Read More
CVE-2021-36858 (testimonials)
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Themepoints Testimonials plugin <= 2.6 on WordPress. Read More
xerces-c-3.2.3-5.el8
FEDORA-EPEL-2022-fac3491880 Packages in this update: xerces-c-3.2.3-5.el8 Update description: Update to 3.2.3 (#1788475) Read More
CVE-2021-37782 (employee_record_management_system)
Employee Record Management System v 1.2 is vulnerable to SQL Injection via editempprofile.php. Read More
CVE-2021-35388
Hospital Management System v 4.0 is vulnerable to Cross Site Scripting (XSS) via /hospital/hms/admin/patient-search.php. Read More