➤ Team Security Exploits News / Sichterheitslücken Nachrichten
225.834x Beiträge in dieser Kategorie



[ 1 ] [ 2 ] [ 3 ] [4] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ] [ 12 ] [ 13 ] [ 14 ]
❥ Directus up to 8.8.1 api-aa information disclosure
A vulnerability, which was classified as problematic, was found in Directus up to 8.8.1. Affected is an unknown functionality of the component api-aa.... weiterlesen
❥ Directus up to 8.8.1 PATCH Method privileges management
A vulnerability, which was classified as problematic, has been found in Directus up to 8.8.1. This issue affects an unknown function of the component PATCH... weiterlesen
❥ Directus up to 8.8.1 API /users/{id} information disclosure
A vulnerability classified as problematic was found in Directus up to 8.8.1. This vulnerability affects some unknown processing of the file /users/{id}... weiterlesen
❥ GitHub Security Lab: Java : Add query to detect Apache Struts enabled Development mode
... weiterlesen
❥ GitHub Security Lab: Java : Add a query to detect Spring View Manipulation Vulnerability
... weiterlesen
❥ GitHub Security Lab: ihsinme: CPP add query for CWE-788 Access of memory location after the end of a buffer using strncat.
... weiterlesen
❥ Medium CVE-2020-36079: Zenphoto Zenphoto
** DISPUTED ** Zenphoto through 1.5.7 is affected by authenticated arbitrary file upload, leading to remote code execution. The attacker must navigate... weiterlesen
❥ Medium CVE-2021-21302: Prestashop Prestashop
PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.2 there is a CSV Injection vulnerability possible by using... weiterlesen
❥ GitHub Security Lab: [Java] CWE-489: Query to detect main() method in Java EE applications
... weiterlesen
❥ UniFi Protect up to 1.17.0 Controller denial of service
A vulnerability classified as problematic has been found in UniFi Protect up to 1.17.0. This affects an unknown code block of the component Controller... weiterlesen
❥ VMware Spring Security up to 5.2.8/5.3.7/5.4.3 security check for standard
A vulnerability was found in VMware Spring Security up to 5.2.8/5.3.7/5.4.3. It has been rated as problematic. Affected by this issue is an unknown code.... weiterlesen
❥ Brave Web Browser up to 1.20.103 Proxy information disclosure
A vulnerability was found in Brave Web Browser up to 1.20.103 (Web Browser). It has been declared as problematic. Affected by this vulnerability is an... weiterlesen
❥ Red Hat Satellite BMC Interface information disclosure [CVE-2021-20256]
A vulnerability was found in Red Hat Satellite (version unknown). It has been classified as problematic. Affected is some unknown functionality of the... weiterlesen
❥ Red Hat 3scale API Management Platform Backend resource consumption
A vulnerability was found in Red Hat 3scale API Management Platform (Automation Software) (unknown version) and classified as problematic. This issue affects... weiterlesen
❥ mbsync up to 1.3.4/1.4.0 Mailbox Name Validator path traversal
A vulnerability has been found in mbsync up to 1.3.4/1.4.0 and classified as problematic. This vulnerability affects an unknown function of the component... weiterlesen
❥ CVE-2020-35628
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h... weiterlesen
❥ CVE-2020-8298
fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the `copy`, `copySync`, `remove`, and `removeSync`... weiterlesen
❥ CVE-2020-28636
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h... weiterlesen
❥ CVE-2020-35636
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h... weiterlesen
❥ CVE-2020-28601
A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_2/PM_io_parser.h... weiterlesen
❥ CVE-2021-20350
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus... weiterlesen
❥ CVE-2021-20340
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus... weiterlesen
❥ CVE-2020-4856
IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... weiterlesen
❥ CVE-2020-4863
IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... weiterlesen
❥ CVE-2020-4975
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus... weiterlesen
❥ CVE-2021-20351
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus... weiterlesen
❥ CVE-2020-4866
IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus... weiterlesen
❥ CVE-2020-4857
IBM Engineering products are vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI... weiterlesen
❥ Linux Kernel BPF __cgroup_bpf_run_filter_getsockopt heap-based overflow
A vulnerability, which was classified as critical, was found in Linux Kernel (Operating System) (the affected version unknown). This affects the function... weiterlesen
❥ Openshift ose-docker-builder file access [CVE-2021-20182]
A vulnerability, which was classified as problematic, has been found in Openshift ose-docker-builder (Virtualization Software) (affected version not known).... weiterlesen
❥ Nextcloud Deck up to 1.0.1 resource injection [CVE-2020-8297]
A vulnerability classified as critical was found in Nextcloud Deck up to 1.0.1 (Cloud Software). Affected by this vulnerability is an unknown code. Upgrading... weiterlesen
❥ Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 OnGuard buffer overflow
A vulnerability classified as critical has been found in Aruba ClearPass Policy Manager up to 6.7.14/6.8.8/6.9.4 (Policy Management Software). Affected... weiterlesen
❥ SoftMaker Office PlanMaker 2021 Revision 1014 Document heap-based overflow
A vulnerability was found in SoftMaker Office PlanMaker 2021 Revision 1014. It has been rated as critical. This issue affects some unknown functionality... weiterlesen
❥ Undertow 2.0.33.SP2/2.1.5.SP1/2.2.3.SP1 AJP Connector denial of service
A vulnerability was found in Undertow 2.0.33.SP2/2.1.5.SP1/2.2.3.SP1. It has been declared as problematic. This vulnerability affects an unknown functionality... weiterlesen
❥ KACO New Energy XP100U up to 2.0 information disclosure [CVE-2021-3252]
A vulnerability was found in KACO New Energy XP100U up to 2.0. It has been classified as problematic. This affects an unknown function. There is no information... weiterlesen
❥ MITREid Connect up to 1.3.3 OpenID Connect Server OAuthConfirmationController.java improper authorization
A vulnerability was found in MITREid Connect up to 1.3.3 and classified as critical. Affected by this issue is some unknown processing of the file org/mitre/oauth2/web/OAuthConfirmationController.java... weiterlesen
❥ Snow Inventory Agent up to 6.7.0 on Windows Configuration privileges management
A vulnerability has been found in Snow Inventory Agent up to 6.7.0 on Windows and classified as critical. Affected by this vulnerability is an unknown... weiterlesen
❥ Polaris Office 9.102.66 PDF File PolarisOffice.exe divide by zero
A vulnerability, which was classified as problematic, was found in Polaris Office 9.102.66. Affected is an unknown code in the library EngineDLL.dll of... weiterlesen
❥ CVE-2021-27217
An issue was discovered in the _send_secure_msg() function of Yubico yubihsm-shell through 2.0.3. The function does not correctly validate the embedded... weiterlesen
❥ CVE-2021-23132
... weiterlesen
❥ CVE-2021-26027
... weiterlesen
❥ CVE-2021-23128
An issue was discovered in Joomla! 3.2.0 through 3.9.24. The core shipped but unused randval implementation within FOF (FOFEncryptRandval) used an potential... weiterlesen
❥ CVE-2021-22128
An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access... weiterlesen
❥ CVE-2021-23130
... weiterlesen
❥ CVE-2021-23131
... weiterlesen
❥ CVE-2021-26028
... weiterlesen
❥ CVE-2021-26029
... weiterlesen
❥ CVE-2021-23129
... weiterlesen
225.834x Beiträge in dieser Kategorie



[ 1 ] [ 2 ] [ 3 ] [4] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ] [ 12 ] [ 13 ] [ 14 ]
RSS Feeds vom IT News Nachrichtenportal Team Security abonieren
27x RSS Feed QuellenRSS Feed Unterkategorien von Team Security Exploits News / Sichterheitslücken Nachrichten: 2x
RSS Feed Kategorie von IT News Nachrichtenportal Team Security Exploits abonieren
![Validate my RSS feed [Valid RSS]](/image/valid-rss-rogers.png)
Eigene RSS Feed Quelle hinzufügen [IT Security Webseite, Blog, sonstige Quelle]
RSS Reader Empfehlung
Benutze Feedly zum Abonieren von RSS Feeds .
Als weitere Online Plattform empfiehlt sich InnoReader RSS Online Web Reader
Es empfiehlt sich für Chrome Erweiterung "RSS-Abonnement" (von Google) oder für Firefox Addon / Erweiterung Awesome RSS