Category: Advisories

It was discovered that SPIP, a website engine for publishing, would allow a malicious user to perform cross-site scripting attacks. Read More

Several vulnerabilities were discovered in Apache Traffic Server, a reverse and forward proxy server, which could result in HTTP request smuggling or MITM attacks. Read...

Several security vulnerabilities have been discovered in smarty3, the compiling PHP template engine. Template authors are able to run restricted static php methods or even...

Posted by malvuln on May 27 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/be60e389a0108b2871dff12dfbb542ac.txt Contact: malvuln13 () gmail com Media:...

Posted by Julien Ahrens (RCE Security) on May 27 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: User Meta Vendor URL: https://wordpress.org/plugins/user-meta Type: Relative...

Peter Agten discovered that several modules for TCP syslog reception in rsyslog, a system and kernel logging daemon, have buffer overflow flaws when octet-counted framing...

FEDORA-2022-21c312c05b Packages in this update: dotnet3.1-3.1.419-1.fc34 Update description: Upstream release notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.25/3.1.25.md Read More

FEDORA-2022-62c0ec2d98 Packages in this update: dotnet3.1-3.1.419-1.fc35 Update description: Upstream release notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.25/3.1.25.md Read More

FEDORA-2022-b3a92b1881 Packages in this update: dotnet3.1-3.1.419-1.fc36 Update description: Upstream release notes: https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.25/3.1.25.md Read More

The software may be vulnerable to both Un-Auth XML interaction and unauthenticated device enrollment. Read More