Ausnahme gefangen: SSL certificate problem: certificate is not yet valid ๐Ÿ“Œ CVE-2022-39387 | XWiki up to 1.29.0 Request Parameter improper authentication (GHSA-m7gv-v8xx-v47w)
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š CVE-2022-39387 | XWiki up to 1.29.0 Request Parameter improper authentication (GHSA-m7gv-v8xx-v47w)


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability classified as critical has been found in XWiki up to 1.29.0. Affected is an unknown function of the component Request Parameter Handler. The manipulation leads to improper authentication. This vulnerability is traded as CVE-2022-39387. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component. ...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ CVE-2024-21648 | XWiki xwiki-platform/xwiki-platform-oldcore Rollback Action insufficient privileges


๐Ÿ“ˆ 59.23 Punkte

๐Ÿ“Œ CVE-2024-21651 | XWiki xwiki-platform-distribution-war Attachment denial of service (GHSA-8959-rfxh-r4j4)


๐Ÿ“ˆ 49.75 Punkte

๐Ÿ“Œ CVE-2023-26477 | XWiki prior 13.10.10/14.4.6/14.9-rc-1 Request Parameter newThemeName neutralization of directives (GHSA-x2qm-r4wx-8gpg)


๐Ÿ“ˆ 45.1 Punkte

๐Ÿ“Œ CVE-2023-46732 | XWiki Platform up to 14.10.13/15.5.0/15.6 Parameter rev cross site scripting (GHSA-j9rc-w3wv-fv62)


๐Ÿ“ˆ 40.11 Punkte

๐Ÿ“Œ Medium CVE-2020-15171: Xwiki Xwiki


๐Ÿ“ˆ 39.88 Punkte

๐Ÿ“Œ Medium CVE-2021-21380: Xwiki Xwiki


๐Ÿ“ˆ 39.88 Punkte

๐Ÿ“Œ CVE-2024-21650 | XWiki xwiki-platform up to 14.10.16/15.5.2/15.7 User Registration first name/last name neutralization of directives


๐Ÿ“ˆ 39.88 Punkte

๐Ÿ“Œ CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki


๐Ÿ“ˆ 39.88 Punkte

๐Ÿ“Œ CVE-2023-50732 | XWiki xwiki-platform-index-tree-macro authorization


๐Ÿ“ˆ 39.88 Punkte

๐Ÿ“Œ CVE-2021-3827 | Keycloak SOAP Request improper authentication (GHSA-4pc7-vqv5-5r3v)


๐Ÿ“ˆ 30.96 Punkte

๐Ÿ“Œ CVE-2023-7079 | Cloudflare wrangler up to 3.18.0 HTTP Request improper authentication (GHSA-cfph-4qqh-w828)


๐Ÿ“ˆ 30.96 Punkte

๐Ÿ“Œ CVE-2023-26478 | XWiki prior 14.4.6/14.9-rc-1 routine (GHSA-8692-g6g9-gm5p)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-26480 | XWiki prior 13.10.10/14.4.7/14.9 cross site scripting (GHSA-32fq-m2q5-h83g)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-26471 | XWiki Platform prior 13.10.10/14.4.6/14.9 Comment access control (GHSA-9cqm-5wf7-wcj7)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-26470 | XWiki Platform prior 14.0-rc-1 resource consumption (GHSA-92wp-r7hm-42g7)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-26472 | XWiki Platform prior 13.10.10/14.4.6/14.9 escape output (GHSA-vwr6-qp4q-2wj7)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-37908 | XWiki Rendering XHTML Rendering cross site scripting (GHSA-663w-2xp3-5739)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-37913 | XWiki Platform Office Converter path traversal (GHSA-vcvr-v426-3m3m)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-45137 | XWiki Platform Error Message cross site scripting (GHSA-93gh-jgjj-r929)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-46731 | XWiki Platform section neutralization of directives (GHSA-62pr-qqf7-hh89)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-46244 | XWiki Platform prior 14.10.7/15.2RC1 authorization (GHSA-rmxw-c48h-2vf5)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-46244 | XWiki Platform prior 14.10.7/15.2RC1 authorization (GHSA-rmxw-c48h-2vf5)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-46743 | XWiki SAS application-collabora up to 1.2 userCanWrite default permission (GHSA-mvq3-xxg2-rj57)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-49280 | XWiki application-changerequest up to 1.9 XML File insufficiently protected credentials (GHSA-2fr7-cc7p-p45q)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-50723 | XWiki Platform Administration Interface neutralization of directives (GHSA-qj86-p74r-7wp5)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-50722 | XWiki Platform Admin Section cross site scripting (GHSA-cp3j-273x-3jxc)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ XWiki 11.10.13/12.6.7/12.10.2/13.0 Verification improper authorization


๐Ÿ“ˆ 28.49 Punkte

๐Ÿ“Œ CVE-2019-5165 | Moxa AWK-3131A 1.13 Web Authentication SNMP Request improper authentication


๐Ÿ“ˆ 26.85 Punkte

๐Ÿ“Œ CVE-2023-22497 | Netdata prior 1.37.0 improper authentication (GHSA-jx85-39cw-66f2)


๐Ÿ“ˆ 25.96 Punkte

๐Ÿ“Œ CVE-2023-25561 | DataHub authenticateJaasUser improper authentication (GHSA-7wc6-p6c4-522c)


๐Ÿ“ˆ 25.96 Punkte

๐Ÿ“Œ CVE-2023-25560 | DataHub AuthServiceClient improper authentication (GHSA-6rpf-5cfg-h8f3)


๐Ÿ“ˆ 25.96 Punkte

๐Ÿ“Œ CVE-2023-27582 | maddy up to 0.6.2 improper authentication (GHSA-4g76-w3xw-2x6w)


๐Ÿ“ˆ 25.96 Punkte

๐Ÿ“Œ CVE-2023-1327 | Netgear RAX30 AX2400 prior 1.0.6.74 Web Management Interface improper authentication (GHSA-pvxx-rv48-qw5m)


๐Ÿ“ˆ 25.96 Punkte

๐Ÿ“Œ CVE-2023-28646 | Nextcloud App prior 3.24.1 on Android Passcode improper authentication (GHSA-c3rf-94h6-vj8v)


๐Ÿ“ˆ 25.96 Punkte

๐Ÿ“Œ CVE-2023-42818 | JumpServer up to 3.5.5/3.6.4 SSH Private Key improper authentication (GHSA-jv3c-27cv-w8jv)


๐Ÿ“ˆ 25.96 Punkte











matomo

Kontakt

24/7 kontakt@tsecurity.de

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software