[Forgot Password]
Login  Register Subscribe

25354

 
 

132811

 
 

146512

 
 

909

 
 

117189

 
 

156

 
 
Paid content will be excluded from the download.

Filter
Matches : 146514 Download | Alert*

An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. A local user may be able to read kernel memory.

Apache Guacamole 1.1.0 and older do not properly validate datareceived from RDP servers via static virtual channels. If a userconnects to a malicious or compromised RDP server, specially-craftedPDUs could result in disclosure of information within the memory ofthe guacd process handling the connection.

A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: debug environments) can allow an attacker to crash the service (DoS). We recommend updating, or to restrict access in your debug environments.

A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterprise Manager versions 20.06.4.0 and prior. An attacker with administrative privileges could potentially download and run a malicious executable that could allow OS command injection on the system.

SQL injection with the search parameter in Records.php for phpzag live add edit delete data tables records with ajax php mysql

SQL injection in order and column parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql

SQL injection with start and length parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql

Improper serialization of internal state in the authorization subsystem in MongoDB Server's authorization subsystem permits a user with valid credentials to bypass IP whitelisting protection mechanisms following administrative action. This issue affects: MongoDB Inc. MongoDB Server 4.2 versions prior to 4.2.3; 4.0 versions prior to 4.0.15; 4.3 versions prior to 4.3.3; 3.6 versions prior to 3.6.18.

In all versions of the package jspdf, it is possible to use <<script>script> in order to go over the filtering regex.

In all versions of package casperjs, the mergeObjects utility function is susceptible to Prototype Pollution.


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   14651

© SecPod Technologies