CVE-2021-24895
The Cybersoldier WordPress plugin before 1.7.0 does not sanitise and escape the URL settings before outputting it in an attribute, which could allow high privilege...
CVE-2021-24897
The Add Subtitle WordPress plugin through 1.1.0 does not sanitise or escape the sub-title field (available only with classic editor) when output in the page,...
CVE-2021-24940
The Persian Woocommerce WordPress plugin through 5.8.0 does not escape the s parameter before outputting it back in an attribute in the admin dashboard, which...
CVE-2021-24950
The Insight Core WordPress plugin through 1.0 does not have any authorisation and CSRF checks in the insight_customizer_options_import (available to any authenticated user), does not...
Post Title
Multiple vulnerabilities have been discovered in Schneider Electric APC Smart-UPS that could allow for remote code execution. Schneider Electric APC Smart-UPS are devices that protect...
dotnet6.0-6.0.103-1.fc34
FEDORA-2022-3b24db8072 Packages in this update: dotnet6.0-6.0.103-1.fc34 Update description: This is the March 2022 update for .NET 6: SDK 6.0.103 and Runtime 6.0.3 Release notes: -...
dotnet6.0-6.0.103-1.fc35
FEDORA-2022-61d4028014 Packages in this update: dotnet6.0-6.0.103-1.fc35 Update description: This is the March 2022 update for .NET 6: SDK 6.0.103 and Runtime 6.0.3 Release notes: -...
dotnet6.0-6.0.103-1.fc36
FEDORA-2022-5f97af4511 Packages in this update: dotnet6.0-6.0.103-1.fc36 Update description: This is the March 2022 update for .NET 6: SDK 6.0.103 and Runtime 6.0.3 Release notes: -...
USN-5324-1: libxml2 vulnerability
It was discovered that libxml2 incorrectly handled certain XML files. An attacker could use this issue to cause libxml2 to crash, resulting in a denial...
USN-5323-1: NBD vulnerabilities
It was discovered that NBD incorrectly handled name length fields. A remote attacker could use this issue to cause NBD to crash, resulting in a...