CVE-2020-0509
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any...
Multiple Vulnerabilities in FortiWeb could allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in FortiWeb, which could allow for Arbitrary Code Execution. FortiWeb is a web application firewall (WAF). Depending on the privileges...
CVE-2021-3099
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. Read More
CVE-2021-3091
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none. Read More
Invitation to the World Cryptologic Competition 2023
Posted by Competition Administrator on Mar 21 The WCC 2023 is a fully-online and open competition using GitHub. The language of the competition is English....
Insecure python cgi documentation and tutorials are vulnerable to XSS.
Posted by Georgi Guninski on Mar 21 Is there low hanging fruit for the following observation? The documentation of the python cgi module is vulnerable...
Re: Microsoft PlayReady security research
Posted by Adam Gowdiak on Mar 21 Hello, I feel obliged to provide additional comments to this paragraph as I start to believe that CANAL+...
Re: Defense in depth — the Microsoft way (part 83): instead to fix even their most stupid mistaskes, they spill barrels of snakeoil to cover them (or just leave them as-is)
Posted by Arik Seils on Mar 21 Hi there, One can use the Metasploit Framework Module post/windows/local/bypassua _fodhelper to achieve this. Greetings from Germany, A.Seils...
xen-4.16.3-4.fc37
FEDORA-2023-da8315e641 Packages in this update: xen-4.16.3-4.fc37 Update description: 3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling...
xen-4.16.3-4.fc36
FEDORA-2023-04b5338dd0 Packages in this update: xen-4.16.3-4.fc36 Update description: 3 security issues (#2180425) x86 shadow plus log-dirty mode use-after-free [XSA-427, CVE-2022-42332] x86/HVM pinned cache attributes mis-handling...