Ausnahme gefangen: SSL certificate problem: certificate is not yet valid ๐Ÿ“Œ CVE-2022-31051 | semantic-release up to 19.0.2 on npm Repository URL information disclosure (GHSA-x2pg-mjhr-2m5x)
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š CVE-2022-31051 | semantic-release up to 19.0.2 on npm Repository URL information disclosure (GHSA-x2pg-mjhr-2m5x)


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability classified as problematic was found in semantic-release up to 19.0.2. This vulnerability affects unknown code of the component Repository URL Handler. The manipulation leads to information disclosure. This vulnerability was named CVE-2022-31051. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component. ...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ On trusting NPM: Early in the month, Lance R. Vick noticed that the maintainer of the NPM foreach package let their personal email domain expire, so they bought it and now โ€œcontrols foreach on NPM and the 36,826 projects that depend on itโ€.


๐Ÿ“ˆ 37.29 Punkte

๐Ÿ“Œ CVE-2024-22402 | NextCloud Guests up to 2.4.0/2.5.0/3.0.0 Request URL url encoding (GHSA-v3qw-7vgv-2fxj)


๐Ÿ“ˆ 27.99 Punkte

๐Ÿ“Œ CVE-2023-43799 | Altair up to 5.2.4 URL information disclosure (GHSA-9m5v-vrf6-fmvm)


๐Ÿ“ˆ 27.12 Punkte

๐Ÿ“Œ Gitls - Enumerate Git Repository URL From List Of URL / User / Org


๐Ÿ“ˆ 27.12 Punkte

๐Ÿ“Œ GiveMeSecrets - Use Regular Expressions To Get Sensitive Information From A Given Repository (GitHub, Pip Or Npm)


๐Ÿ“ˆ 26.35 Punkte

๐Ÿ“Œ Medium CVE-2020-7614: Npm-programmatic project Npm-programmatic


๐Ÿ“ˆ 26.04 Punkte

๐Ÿ“Œ Semantic sm short url script v2.0 Sql injection Vulnerability


๐Ÿ“ˆ 25.91 Punkte

๐Ÿ“Œ KDE 4.10.0/4.10.1/4.10.2/4.10.3 kioslave/http/http.cpp m_request.url.url information disclosure


๐Ÿ“ˆ 24.54 Punkte

๐Ÿ“Œ CVE-2019-10769 | safer-eval on npm Sandbox input validation (GHSA-v63x-xc9j-hhvq)


๐Ÿ“ˆ 23.48 Punkte

๐Ÿ“Œ gitlabhook up to 0.0.17 on npm Repository Name command injection


๐Ÿ“ˆ 22.6 Punkte

๐Ÿ“Œ Attackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing Links


๐Ÿ“ˆ 22.6 Punkte

๐Ÿ“Œ Malicious npm package โ€˜fallguysโ€™ removed from the official repository


๐Ÿ“ˆ 22.6 Punkte

๐Ÿ“Œ Malicious npm library removed from the repository due to backdoor capabilities


๐Ÿ“ˆ 22.6 Punkte

๐Ÿ“Œ Software Composition Analysis Mitigates Systemic Risk in the Popular NPM Repository


๐Ÿ“ˆ 22.6 Punkte

๐Ÿ“Œ Large-scale cryptomining campaign is targeting the NPM JavaScript package repository


๐Ÿ“ˆ 22.6 Punkte

๐Ÿ“Œ CVE-2020-8124 | url-parse up to 1.4.4 on npm Security Check input validation


๐Ÿ“ˆ 22.08 Punkte

๐Ÿ“Œ CVE-2023-46498 | EverShop NPM up to 1.0.0-rc.7 route.json information disclosure


๐Ÿ“ˆ 21.21 Punkte

๐Ÿ“Œ CVE-2023-42282 | NPM IP Package up to 1.1.8 isPublic information disclosure


๐Ÿ“ˆ 21.21 Punkte

๐Ÿ“Œ Fudan University Researchers Introduce SpeechGPT-Gen: A 8B-Parameter Speech Large Language Model (SLLM) Efficient in Semantic and Perceptual Information Modeling


๐Ÿ“ˆ 21.18 Punkte

๐Ÿ“Œ simple-npm-registry on Node.js URL directory traversal


๐Ÿ“ˆ 20.9 Punkte

๐Ÿ“Œ Reset Local Repository Branch to be Just Like Remote Repository HEAD: A Step-by-Step Guide


๐Ÿ“ˆ 20.35 Punkte

๐Ÿ“Œ Serve 6.5.3 on npm Ignore information disclosure


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ Harp Module up to 0.29.0 on npm Server Rule Directory information disclosure


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ Actions http-client up to 1.0.7 on npm Authorization Header information disclosure


๐Ÿ“ˆ 20.03 Punkte

๐Ÿ“Œ CVE-2021-36395 | Moodle File Repository URL Parser resource consumption


๐Ÿ“ˆ 19.83 Punkte

๐Ÿ“Œ IBM InfoSphere Information Server URL information disclosure


๐Ÿ“ˆ 19.81 Punkte

๐Ÿ“Œ IBM InfoSphere Information Server URL Information Disclosure


๐Ÿ“ˆ 19.81 Punkte

๐Ÿ“Œ CVE-2023-22468 | Discourse up to 2.8.12/3.0.0.beta15 URL cross site scripting (GHSA-8mr2-xf8r-wr8m)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2023-22722 | GLPI up to 10.0.5 URL cross site scripting (GHSA-352j-wr38-493c)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2023-25167 | Discourse Git URL redos (GHSA-4w55-w26q-r35w)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2023-24811 | Misskey up to 13.3.1 URL Preview cross site scripting (GHSA-vc39-c453-67g3)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2023-45813 | Torbot up to 3.x URL Validation torbot.modules.validators.validate_link redos (GHSA-72qw-p7hh-m3ff)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2024-26481 | Kirby CMS 4.1.0 URL Parameter cross site scripting (GHSA-57f2-8p89-66x6)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2024-27291 | jhpyle docassemble up to 1.4.96 URL redirect (GHSA-7wxf-r2qv-9xwr)


๐Ÿ“ˆ 19.52 Punkte

๐Ÿ“Œ CVE-2023-46950 | Contribsys Sidekiq 6.5.8 URL filter cross site scripting (GHSA-cmh9-rx85-xj38)


๐Ÿ“ˆ 19.52 Punkte











matomo

Kontakt

24/7 kontakt@tsecurity.de

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software