CVE-2021-22055
The SchedulerServer in Vmware photon allows remote attackers to inject logs through r in the package parameter. Attackers can also insert malicious data and fake...
thunderbird-91.8.0-1.fc36
FEDORA-2022-e721e5aebc Packages in this update: thunderbird-91.8.0-1.fc36 Update description: Update to 91.8.0 Read More
thunderbird-91.8.0-1.fc35
FEDORA-2022-57f0bf1034 Packages in this update: thunderbird-91.8.0-1.fc35 Update description: Update to 91.8.0 Read More
thunderbird-91.8.0-1.fc34
FEDORA-2022-585661c82c Packages in this update: thunderbird-91.8.0-1.fc34 Update description: Update to 91.8.0 Read More
USN-5374-1: libarchive vulnerability
It was discovered that libarchive incorrectly handled certain archive files. An attacker could possibly use this issue to expose sensitive information. Read More
CVE-2021-25090
The Portfolio Gallery, Product Catalog WordPress plugin before 2.1.0 does not have authorisation and CSRF checks in various functions related to AJAX actions, allowing any...
CVE-2021-24986
The Post Grid WordPress plugin before 2.1.16 does not escape the keyword parameter before outputting it back in an attribute, leading to a Reflected Cross-Site...
CVE-2021-24987
The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.30 does not sanitise and escape the urls parameter in its the_champ_sharing_count AJAX...
USN-5373-2: Django vulnerabilities
USN-5373-1 fixed several vulnerabilities in Django. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was...
USN-5373-1: Django vulnerabilities
It was discovered that Django incorrectly handled certain certain column aliases in the QuerySet.annotate(), aggregate(), and extra() methods. A remote attacker could possibly use this...