โผ CVE-2022-24969 โผ
๐ Read
via "National Vulnerability Database".
bypass CVE-2021-25640 > In Apache Dubbo prior to 2.6.12 and 2.7.15, the usage of parseURL method will lead to the bypass of the white host check which can cause open redirect or SSRF vulnerability.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2036 โผ
๐ Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - Stored in GitHub repository francoisjacquet/rosariosis prior to 9.0.1.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26377 โผ
๐ Read
via "National Vulnerability Database".
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an attacker to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server 2.4 version 2.4.53 and prior versions.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2026 โผ
๐ Read
via "National Vulnerability Database".
Cross-site Scripting (XSS) - Stored in GitHub repository kromitgmbh/titra prior to 0.77.0.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26363 โผ
๐ Read
via "National Vulnerability Database".
x86 pv: Insufficient care with non-coherent mappings T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to maintain invariants required for Xen's safety, e.g. PV guests may not have direct writeable access to pagetables; updates need auditing by Xen. Unfortunately, Xen's safety logic doesn't account for CPU-induced cache non-coherency; cases where the CPU can cause the content of the cache to be different to the content in main memory. In such cases, Xen's safety logic can incorrectly conclude that the contents of a page is safe.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2018 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability classified as critical has been found in SourceCodester Prison Management System 1.0. Affected is an unknown function of the file /admin/?page=inmates/view_inmate of the component Inmate Handler. The manipulation of the argument id with the input 1%27%20and%201=2%20union%20select%201,user(),3,4,5,6,7,8,9,0,database(),2,3,4,5,6,7,8,9,0,1,2,3,4--+ leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31031 โผ
๐ Read
via "National Vulnerability Database".
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In versions prior to and including 2.12.1 a stack buffer overflow vulnerability affects PJSIP users that use STUN in their applications, either by: setting a STUN server in their account/media config in PJSUA/PJSUA2 level, or directly using `pjlib-util/stun_simple` API. A patch is available in commit 450baca which should be included in the next release. There are no known workarounds for this issue.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31038 โผ
๐ Read
via "National Vulnerability Database".
Gogs is an open source self-hosted Git service. In versions of gogs prior to 0.12.9 `DisplayName` does not filter characters input from users, which leads to an XSS vulnerability when directly displayed in the issue list. This issue has been resolved in commit 155cae1d which sanitizes `DisplayName` prior to display to the user. All users of gogs are advised to upgrade. Users unable to upgrade should check their users' display names for malicious characters.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-1986 โผ
๐ Read
via "National Vulnerability Database".
OS Command Injection in GitHub repository gogs/gogs prior to 0.12.9.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31813 โผ
๐ Read
via "National Vulnerability Database".
Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-30760 โผ
๐ Read
via "National Vulnerability Database".
An Insecure Direct Object Reference (IDOR) issue in fn2Web in ihb eG FlexNow before 2.04.09.016 allows remote authenticated attackers to obtain sensitive student information (final grades, study courses, degrees) by changing the student ID parameter in the HTTP POST request to the FrontControllerSS endpoint.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-26362 โผ
๐ Read
via "National Vulnerability Database".
x86 pv: Race condition in typeref acquisition Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to maintain invariants required for Xen's safety, e.g. PV guests may not have direct writeable access to pagetables; updates need auditing by Xen. Unfortunately, the logic for acquiring a type reference has a race condition, whereby a safely TLB flush is issued too early and creates a window where the guest can re-establish the read/write mapping before writeability is prohibited.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-30556 โผ
๐ Read
via "National Vulnerability Database".
Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-31214 โผ
๐ Read
via "National Vulnerability Database".
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user namespace, the NO_NEW_PRIVS prctl is not activated, and the entered mount namespace is under the attacker's control. In this way, the filesystem layout can be adjusted to gain root privileges through execution of available setuid-root binaries such as su or sudo.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-2017 โผ
๐ Read
via "National Vulnerability Database".
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /pms/admin/visits/view_visit.php of the component Visit Handler. The manipulation of the argument id with the input 2%27and%201=2%20union%20select%201,2,3,4,5,6,7,user(),database()--+ leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.๐ Read
via "National Vulnerability Database".
๐ด Emotet Banking Trojan Resurfaces, Skating Past Email Security ๐ด
๐ Read
via "Dark Reading".
The malware is using spreadsheets, documents, and other types of Microsoft Office attachments in a new and improved version that is often able to bypass email gateway-security scanners.๐ Read
via "Dark Reading".
Dark Reading
Emotet Banking Trojan Resurfaces, Skating Past Email Security
The malware is using spreadsheets, documents, and other types of Microsoft Office attachments in a new and improved version that is often able to bypass email gateway-security scanners.
๐ด Identity-First Security Helps Reduce and Neutralize Enterprise Threats ๐ด
๐ Read
via "Dark Reading".
Okta's Marc Rogers and Auth0's Jameeka Aaron join Dark Reading's Terry Sweeney at Dark Reading News Desk during RSA Conference to talk about remote work security.๐ Read
via "Dark Reading".
Darkreading
Identity-First Security Helps Reduce and Neutralize Enterprise Threats
Okta's Marc Rogers and Auth0's Jameeka Aaron join Dark Reading's Terry Sweeney at Dark Reading News Desk during RSA Conference to talk about remote work security.
โผ CVE-2022-29224 โผ
๐ Read
via "National Vulnerability Database".
Envoy is a cloud-native high-performance proxy. Versions of envoy prior to 1.22.1 are subject to a segmentation fault in the GrpcHealthCheckerImpl. Envoy can perform various types of upstream health checking. One of them uses gRPC. Envoy also has a feature which can รยขรขโยฌร
โholdรยขรขโยฌ? (prevent removal) upstream hosts obtained via service discovery until configured active health checking fails. If an attacker controls an upstream host and also controls service discovery of that host (via DNS, the EDS API, etc.), an attacker can crash Envoy by forcing removal of the host from service discovery, and then failing the gRPC health check request. This will crash Envoy via a null pointer dereference. Users are advised to upgrade to resolve this vulnerability. Users unable to upgrade may disable gRPC health checking and/or replace it with a different health checking type as a mitigation.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-30898 โผ
๐ Read
via "National Vulnerability Database".
A Cross-site request forgery (CSRF) vulnerability in Cscms music portal system v4.2 allows remote attackers to change the administrator's username and password.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-24876 โผ
๐ Read
via "National Vulnerability Database".
GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Kanban is a GLPI view to display Projects, Tickets, Changes or Problems on a task board. In versions prior to 10.0.1 a user can exploit a cross site scripting vulnerability in Kanban by injecting HTML code in its user name. Users are advised to upgrade. There are no known workarounds for this issue.๐ Read
via "National Vulnerability Database".
๐ด DigiCert Acquires DNS Made Easy ๐ด
๐ Read
via "Dark Reading".
The certificate management company plans to integrate DNS services throughout its portfolio.๐ Read
via "Dark Reading".
Dark Reading
DigiCert Acquires DNS Made Easy
The certificate management company plans to integrate DNS services throughout its portfolio.