Advisories Archives - Page 310 of 1610

CVE-2024-30922: SQL Injection in DerbyNet v9.0 via print/render/award.inc

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30922 Description: A SQL Injection vulnerability has been identified in DerbyNet version 9.0, specifically...

April 5, 2024

Advisories

CVE-2024-30921: Unauthenticated XSS Vulnerability in DerbyNet v9.0 via photo.php

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30921 Description: A Cross-Site Scripting (XSS) vulnerability has been identified in DerbyNet version 9.0,...

April 5, 2024

Advisories

CVE-2024-30920: XSS Vulnerability in DerbyNet v9.0 via render-document.php

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30920 Description: A Cross Site Scripting (XSS) vulnerability has been identified in DerbyNet v9.0,...

April 5, 2024

Advisories

SCHUTZWERK-SA-2023-006: Arbitrary File Read via XML External Entities in Visual Planning

Posted by Lennert Preuth via Fulldisclosure on Apr 05 Title ===== SCHUTZWERK-SA-2023-006: Arbitrary File Read via XML External Entities in Visual Planning Status ====== PUBLISHED...

April 5, 2024

Advisories

SCHUTZWERK-SA-2023-004: Authentication Bypass via Password Reset Functionality in Visual Planning

Posted by Lennert Preuth via Fulldisclosure on Apr 05 Title ===== SCHUTZWERK-SA-2023-004: Authentication Bypass via Password Reset Functionality in Visual Planning Status ====== PUBLISHED Version...

April 5, 2024

Advisories

mod_http2-2.0.27-1.fc40

FEDORA-2024-4812897dd1 Packages in this update: mod_http2-2.0.27-1.fc40 Update description: Security fix for CVE-2024-27316 Read More

April 5, 2024

Advisories

mod_http2-2.0.27-1.fc39

FEDORA-2024-528301bac2 Packages in this update: mod_http2-2.0.27-1.fc39 Update description: Security fix for CVE-2024-27316 Read More

April 5, 2024

Advisories

mod_http2-2.0.27-1.fc38

FEDORA-2024-1f11550e31 Packages in this update: mod_http2-2.0.27-1.fc38 Update description: Security fix for CVE-2024-27316 Read More

April 5, 2024

Advisories

A Vulnerability in Broadcom Brocade Fabric OS Could Allow for Arbitrary Code Execution

A vulnerability has been discovered in Broadcom Brocade Fabric OS that could allow for arbitrary code execution. Broadcom Brocade Fabric OS is the storage area...

April 5, 2024

Advisories

FEDORA-EPEL-2024-3cb841c5f0 Packages in this update: chromium-123.0.6312.105-1.el7 Update description: update to 123.0.6312.105 High CVE-2024-3156: Inappropriate implementation in V8 High CVE-2024-3158: Use after free in Bookmarks High...

April 5, 2024

New Xiu Gou Phishing Kit Targets US, Other Countries with Mascot

Misconfigured Git Configurations Targeted in Emeraldwhale Attack

Roger Grimes on Prioritizing Cybersecurity Advice

Fraudsters exploit US General Election fever, FBI warns

Tracking World Leaders Using Strava

Canadian Government Data Stolen By Chinese Hackers

North Korean Hackers Collaborate with Play Ransomware

Government Sector Suffers 236% Surge in Malware Attacks

Smashing Security podcast #391: The secret Strava service, deepfakes, and crocodiles

Category: Advisories

CVE-2024-30922: SQL Injection in DerbyNet v9.0 via print/render/award.inc

CVE-2024-30921: Unauthenticated XSS Vulnerability in DerbyNet v9.0 via photo.php

CVE-2024-30920: XSS Vulnerability in DerbyNet v9.0 via render-document.php

SCHUTZWERK-SA-2023-006: Arbitrary File Read via XML External Entities in Visual Planning

SCHUTZWERK-SA-2023-004: Authentication Bypass via Password Reset Functionality in Visual Planning

mod_http2-2.0.27-1.fc40

mod_http2-2.0.27-1.fc39

mod_http2-2.0.27-1.fc38

A Vulnerability in Broadcom Brocade Fabric OS Could Allow for Arbitrary Code Execution

chromium-123.0.6312.105-1.el7