DSA-5743-1 roundcube – security update
Multiple cross-site scripting vulnerabilities were discovered in RoundCube webmail. https://security-tracker.debian.org/tracker/DSA-5743-1 Read More
DSA-5742-1 odoo – security update
A vulnerability was discovered in odoo, a suite of web based open source business apps. It could result in the execution of arbitrary code. https://security-tracker.debian.org/tracker/DSA-5742-1...
DSA-5744-1 thunderbird – security update
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. https://security-tracker.debian.org/tracker/DSA-5744-1 Read More
KL-001-2024-010: Journyx Unauthenticated XML External Entities Injection
Posted by KoreLogic Disclosures via Fulldisclosure on Aug 07 KL-001-2024-010: Journyx Unauthenticated XML External Entities Injection Title: Journyx Unauthenticated XML External Entities Injection Advisory ID:...
KL-001-2024-009: Journyx Reflected Cross Site Scripting
Posted by KoreLogic Disclosures via Fulldisclosure on Aug 07 KL-001-2024-009: Journyx Reflected Cross Site Scripting Title: Journyx Reflected Cross Site Scripting Advisory ID: KL-001-2024-009 Publication...
KL-001-2024-008: Journyx Authenticated Remote Code Execution
Posted by KoreLogic Disclosures via Fulldisclosure on Aug 07 KL-001-2024-008: Journyx Authenticated Remote Code Execution Title: Journyx Authenticated Remote Code Execution Advisory ID: KL-001-2024-008 Publication...
KL-001-2024-007: Journyx Unauthenticated Password Reset Bruteforce
Posted by KoreLogic Disclosures via Fulldisclosure on Aug 07 KL-001-2024-007: Journyx Unauthenticated Password Reset Bruteforce Title: Journyx Unauthenticated Password Reset Bruteforce Advisory ID: KL-001-2024-007 Publication...
KL-001-2024-006: Open WebUI Arbitrary File Upload + Path Traversal
Posted by KoreLogic Disclosures via Fulldisclosure on Aug 07 KL-001-2024-006: Open WebUI Arbitrary File Upload + Path Traversal Title: Open WebUI Arbitrary File Upload +...
KL-001-2024-005: Open WebUI Stored Cross-Site Scripting
Posted by KoreLogic Disclosures via Fulldisclosure on Aug 07 KL-001-2024-005: Open WebUI Stored Cross-Site Scripting Title: Open WebUI Stored Cross-Site Scripting Advisory ID: KL-001-2024-005 Publication...
chromium-127.0.6533.99-1.fc40
FEDORA-2024-0462a59d45 Packages in this update: chromium-127.0.6533.99-1.fc40 Update description: Update to 127.0.6533.99 * Critical CVE-2024-7532: Out of bounds memory access in ANGLE * High CVE-2024-7533: Use...