‼ CVE-2023-27787 ‼
📖 Read
via "National Vulnerability Database".
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the parse_list function at the list.c:81 endpoint.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27783 ‼
📖 Read
via "National Vulnerability Database".
An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of service via the tcpedit_dlt_cleanup function at plugins/dlt_plugins.c.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27786 ‼
📖 Read
via "National Vulnerability Database".
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the macinstring function.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-22647 ‼
📖 Read
via "National Vulnerability Database".
An issue found in DepositGame v.1.0 allows an attacker to gain sensitive information via the GetBonusWithdraw and withdraw functions.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27130 ‼
📖 Read
via "National Vulnerability Database".
Cross Site Scripting vulnerability found in Typecho v.1.2.0 allows a remote attacker to execute arbitrary code via an arbitrarily supplied URL parameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27784 ‼
📖 Read
via "National Vulnerability Database".
An issue found in TCPReplay v.4.4.3 allows a remote attacker to cause a denial of service via the read_hexstring function at the utils.c:309 endpoint.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27709 ‼
📖 Read
via "National Vulnerability Database".
SQL injection vulnerability found in DedeCMS v.5.7.106 allows a remote attacker to execute arbitrary code via the rank_* parameter in the /dedestory_catalog.php endpoint.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27711 ‼
📖 Read
via "National Vulnerability Database".
Cross Site Scripting vulnerability found in Typecho v.1.2.0 allows a remote attacker to execute arbitrary code via the Comment Manager /admin/manage-comments.php component.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27707 ‼
📖 Read
via "National Vulnerability Database".
SQL injection vulnerability found in DedeCMS v.5.7.106 allows a remote attacker to execute arbitrary code via the rank_* parameter in the /dede/group_store.php endpoint.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26767 ‼
📖 Read
via "National Vulnerability Database".
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28155 ‼
📖 Read
via "National Vulnerability Database".
** UNSUPPORTED WHEN ASSIGNED ** The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS, or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26769 ‼
📖 Read
via "National Vulnerability Database".
Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-26768 ‼
📖 Read
via "National Vulnerability Database".
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lou_setDataPath functions.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27789 ‼
📖 Read
via "National Vulnerability Database".
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the cidr2cidr function at the cidr.c:178 endpoint.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-31637 ‼
📖 Read
via "National Vulnerability Database".
An issue found in UwAmp v.1.1, 1.2, 1.3, 2.0, 2.1, 2.2, 2.2.1, 3.0.0, 3.0.1, 3.0.2 allows a remote attacker to execute arbitrary code via a crafted DLL.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27131 ‼
📖 Read
via "National Vulnerability Database".
Cross Site Scripting vulnerability found in Typecho v.1.2.0 allows a remote attacker to execute arbitrary code viathe Post Editorparameter.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-27788 ‼
📖 Read
via "National Vulnerability Database".
An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via the ports2PORT function at the portmap.c:69 endpoint.📖 Read
via "National Vulnerability Database".
🕴 Change Is Coming to the Network Detection and Response (NDR) Market 🕴
📖 Read
via "Dark Reading".
After years of relative stability and steady growth, Omdia research indicates the NDR segment is poised for rapid change.📖 Read
via "Dark Reading".
Dark Reading
Change Is Coming to the Network Detection and Response (NDR) Market
After years of relative stability and steady growth, Omdia research indicates the NDR segment is poised for rapid change.
âš Microsoft fixes two 0-days on Patch Tuesday – update now! âš
📖 Read
via "Naked Security".
An email you haven't even looked at yet could be used to trick Outlook into helping crooks to logon as you.📖 Read
via "Naked Security".
Sophos News
Naked Security – Sophos News
‼ CVE-2023-27041 ‼
📖 Read
via "National Vulnerability Database".
School Registration and Fee System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at/bilal final/edit_user.php.📖 Read
via "National Vulnerability Database".
‼ CVE-2023-28106 ‼
📖 Read
via "National Vulnerability Database".
Pimcore is an open source data and experience management platform. Prior to version 10.5.19, an attacker can use cross-site scripting to send a malicious script to an unsuspecting user. Users may upgrade to version 10.5.19 to receive a patch or, as a workaround, apply the patch manually.📖 Read
via "National Vulnerability Database".