‼ CVE-2018-25052 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability has been found in Catalyst-Plugin-Session up to 0.40 and classified as problematic. This vulnerability affects the function _load_sessionid of the file lib/Catalyst/Plugin/Session.pm of the component Session ID Handler. The manipulation of the argument sid leads to cross site scripting. The attack can be initiated remotely. Upgrading to version 0.41 is able to address this issue. The name of the patch is 88d1b599e1163761c9bd53bec53ba078f13e09d4. It is recommended to upgrade the affected component. VDB-216958 is the identifier assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2018-25056 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability, which was classified as problematic, was found in yolapi. Affected is the function render_description of the file yolapi/pypi/metadata.py. The manipulation of the argument text leads to cross site scripting. It is possible to launch the attack remotely. The name of the patch is a0fe129055a99f429133a5c40cb13b44611ff796. It is recommended to apply a patch to fix this issue. VDB-216966 is the identifier assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2018-25053 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in moappi Json2html up to 1.1.x and classified as problematic. This issue affects some unknown processing of the file json2html.js. The manipulation leads to cross site scripting. The attack may be initiated remotely. Upgrading to version 1.2.0 is able to address this issue. The name of the patch is 2d3d24d971b19a8ed1fb823596300b9835d55801. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-216959.📖 Read
via "National Vulnerability Database".
‼ CVE-2018-25055 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability was found in FarCry Solr Pro Plugin up to 1.5.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file packages/forms/solrProSearch.cfc of the component Search Handler. The manipulation of the argument suggestion leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.6.0 is able to address this issue. The name of the patch is b8f3d61511c9b02b781ec442bfb803cbff8e08d5. It is recommended to upgrade the affected component. The identifier VDB-216961 was assigned to this vulnerability.📖 Read
via "National Vulnerability Database".
🕴 Will the Crypto Crash Impact Cybersecurity in 2023? Maybe. 🕴
📖 Read
via "Dark Reading".
Will the bottom falling out of the cryptocurrency market have a profound impact on cybercriminal tactics and business models? Experts weigh in on what to expect.📖 Read
via "Dark Reading".
Dark Reading
Will the Crypto Crash Impact Cybersecurity in 2023? Maybe.
Will the bottom falling out of the cryptocurrency market have a profound impact on cybercriminal tactics and business models? Experts weigh in on what to expect.
‼ CVE-2022-4807 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4804 ‼
📖 Read
via "National Vulnerability Database".
Improper Authorization in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4809 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4812 ‼
📖 Read
via "National Vulnerability Database".
Comparison of Object References Instead of Object Contents in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4810 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4813 ‼
📖 Read
via "National Vulnerability Database".
Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4806 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4802 ‼
📖 Read
via "National Vulnerability Database".
Improper Authorization in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4805 ‼
📖 Read
via "National Vulnerability Database".
Incorrect Use of Privileged APIs in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4800 ‼
📖 Read
via "National Vulnerability Database".
Improper Verification of Source of a Communication Channel in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4797 ‼
📖 Read
via "National Vulnerability Database".
Improper Restriction of Excessive Authentication Attempts in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4803 ‼
📖 Read
via "National Vulnerability Database".
Improper Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4798 ‼
📖 Read
via "National Vulnerability Database".
Improper Authorization in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4811 ‼
📖 Read
via "National Vulnerability Database".
Improper Authorization in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4808 ‼
📖 Read
via "National Vulnerability Database".
Improper Privilege Management in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".
‼ CVE-2022-4801 ‼
📖 Read
via "National Vulnerability Database".
Insufficient Granularity of Access Control in GitHub repository usememos/memos prior to 0.9.1.📖 Read
via "National Vulnerability Database".