Category: Advisories

Multiple vulnerabilities have been discovered in Veeam Backup & Replication that could allow for remote code execution. Veeam Backup & Replication is a backup solutions...

Sam Foxman discovered that Zsh incorrectly handled certain inputs. An attacker could possibly use this issue to regain dropped privileges. (CVE-2019-20044) It was discovered that...

The Simple Download Monitor WordPress plugin before 3.9.5 allows users with a role as low as Contributor to download any file on the web server...

The Cybersoldier WordPress plugin before 1.7.0 does not sanitise and escape the URL settings before outputting it in an attribute, which could allow high privilege...

The Add Subtitle WordPress plugin through 1.1.0 does not sanitise or escape the sub-title field (available only with classic editor) when output in the page,...

The Persian Woocommerce WordPress plugin through 5.8.0 does not escape the s parameter before outputting it back in an attribute in the admin dashboard, which...

The Insight Core WordPress plugin through 1.0 does not have any authorisation and CSRF checks in the insight_customizer_options_import (available to any authenticated user), does not...

Multiple vulnerabilities have been discovered in Schneider Electric APC Smart-UPS that could allow for remote code execution. Schneider Electric APC Smart-UPS are devices that protect...

FEDORA-2022-3b24db8072 Packages in this update: dotnet6.0-6.0.103-1.fc34 Update description: This is the March 2022 update for .NET 6: SDK 6.0.103 and Runtime 6.0.3 Release notes: -...

FEDORA-2022-61d4028014 Packages in this update: dotnet6.0-6.0.103-1.fc35 Update description: This is the March 2022 update for .NET 6: SDK 6.0.103 and Runtime 6.0.3 Release notes: -...