Buffer Overflow found in Nginx NJS allows a remote attacker to execute arbitrary code via the njs_object_property parameter of the njs/njs_vm.c function.

Read More

Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script in the <iframe>src parameter.

Read More

Cross Site Scripting vulnerability found in Pandao Editor.md v.1.5.0 allows a remote attacker to execute arbitrary code via a crafted script to the editor parameter.

Read More

Cross Site Scripting vulnerability found in KOHGYLW Kiftd v.1.0.18 allows a remote attacker to execute arbitrary code via the <ifram> tag in the upload file page.

Read More

An issue found in Directus API v.2.2.0 allows a remote attacker to cause a denial of service via a great amount of HTTP requests.

Read More

FEDORA-EPEL-2023-d4a7c0e04e

Packages in this update:

pdns-recursor-4.8.4-1.el8

Update description:

Update to 4.8.4

Release notes: https://doc.powerdns.com/recursor/changelog/4.8.html

Read More

It was discovered that Liblouis incorrectly handled certain files.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2023-26767, CVE-2023-26768, CVE-2023-26769)

Read More

FEDORA-EPEL-2023-bb6f0bba09

Packages in this update:

pdns-recursor-4.8.4-1.el9

Update description:

Update to 4.8.4

Release notes: https://doc.powerdns.com/recursor/changelog/4.8.html

Read More

FEDORA-2023-680b2e6af5

Packages in this update:

pdns-recursor-4.8.4-1.fc38

Update description:

Update to 4.8.4

Release notes: https://doc.powerdns.com/recursor/changelog/4.8.html

Read More

FEDORA-2023-0c1aaa76b6

Packages in this update:

pdns-recursor-4.8.4-1.fc37

Update description:

Update to 4.8.4

Release notes: https://doc.powerdns.com/recursor/changelog/4.8.html

Read More