โผ CVE-2022-25277 โผ
๐ Read
via "National Vulnerability Database".
Drupal core sanitizes filenames with dangerous extensions upon upload (reference: SA-CORE-2020-012) and strips leading and trailing dots from filenames to prevent uploading server configuration files (reference: SA-CORE-2019-010). However, the protections for these two vulnerabilities previously did not work correctly together. As a result, if the site were configured to allow the upload of files with an htaccess extension, these files' filenames would not be properly sanitized. This could allow bypassing the protections provided by Drupal core's default .htaccess files and possible remote code execution on Apache web servers. This issue is mitigated by the fact that it requires a field administrator to explicitly configure a file field to allow htaccess as an extension (a restricted permission), or a contributed module or custom code that overrides allowed file uploads.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-39989 โผ
๐ Read
via "National Vulnerability Database".
An issue was discovered in Fighting Cock Information System 1.0, which uses default credentials, but does not force nor prompt the administrators to change the credentials.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-25275 โผ
๐ Read
via "National Vulnerability Database".
In some situations, the Image module does not correctly check access to image files not stored in the standard public files directory when generating derivative images using the image styles system. Access to a non-public file is checked only if it is stored in the "private" file system. However, some contributed modules provide additional file systems, or schemes, which may lead to this vulnerability. This vulnerability is mitigated by the fact that it only applies when the site sets (Drupal 9) $config['image.settings']['allow_insecure_derivatives'] or (Drupal 7) $conf['image_allow_insecure_derivatives'] to TRUE. The recommended and default setting is FALSE, and Drupal core does not provide a way to change that in the admin UI. Some sites may require configuration changes following this security release. Review the release notes for your Drupal version if you have issues accessing files or image styles after updating.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-22728 โผ
๐ Read
via "National Vulnerability Database".
Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content management system. Prior to version 4.12.15, the GridField print view incorrectly validates the permission of DataObjects potentially allowing a content author to view records they are not authorised to access. Users should upgrade to Silverstripe Framework 4.12.15 or above to address the issue.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30267 โผ
๐ Read
via "National Vulnerability Database".
CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-22729 โผ
๐ Read
via "National Vulnerability Database".
Silverstripe Framework is the Model-View-Controller framework that powers the Silverstripe content management system. Prior to version 4.12.15, an attacker can display a link to a third party website on a login screen by convincing a legitimate content author to follow a specially crafted link. Users should upgrade to Silverstripe Framework 4.12.15 or above to address the issue.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-25276 โผ
๐ Read
via "National Vulnerability Database".
The Media oEmbed iframe route does not properly validate the iframe domain setting, which allows embeds to be displayed in the context of the primary domain. Under certain circumstances, this could lead to cross-site scripting, leaked cookies, or other vulnerabilities.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30265 โผ
๐ Read
via "National Vulnerability Database".
CLTPHP <=6.0 is vulnerable to Directory Traversal.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30112 โผ
๐ Read
via "National Vulnerability Database".
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30266 โผ
๐ Read
via "National Vulnerability Database".
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-1387 โผ
๐ Read
via "National Vulnerability Database".
Grafana is an open-source platform for monitoring and observability. Starting with the 9.1 branch, Grafana introduced the ability to search for a JWT in the URL query parameter auth_token and use it as the authentication token. By enabling the "url_login" configuration option (disabled by default), a JWT might be sent to data sources. If an attacker has access to the data source, the leaked token could be used to authenticate to Grafana.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-25274 โผ
๐ Read
via "National Vulnerability Database".
Drupal 9.3 implemented a generic entity access API for entity revisions. However, this API was not completely integrated with existing permissions, resulting in some possible access bypass for users who have access to use revisions of content generally, but who do not have access to individual items of node and media content. This vulnerability only affects sites using Drupal's revision system.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30269 โผ
๐ Read
via "National Vulnerability Database".
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php.๐ Read
via "National Vulnerability Database".
๐ด CyberGRX Announces Winners of the Inaugural Cyber Risk Nation Awards ๐ด
๐ Read
via "Dark Reading".
Awarded individuals and companies are trailblazers in third-party risk management.๐ Read
via "Dark Reading".
Dark Reading
CyberGRX Announces Winners of the Inaugural Cyber Risk Nation Awards
Awarded individuals and companies are trailblazers in third-party risk management.
โผ CVE-2023-30210 โผ
๐ Read
via "National Vulnerability Database".
OURPHP <= 7.2.0 is vulnerable to Cross Site Scripting (XSS) via ourphp_tz.php.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-2307 โผ
๐ Read
via "National Vulnerability Database".
Cross-Site Request Forgery (CSRF) in GitHub repository builderio/qwik prior to 0.104.0.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-27979 โผ
๐ Read
via "National Vulnerability Database".
A cross-site scripting (XSS) vulnerability in ToolJet v1.6.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Comment Body component.๐ Read
via "National Vulnerability Database".
โผ CVE-2022-27978 โผ
๐ Read
via "National Vulnerability Database".
Tooljet v1.6 does not properly handle missing values in the API, allowing attackers to arbitrarily reset passwords via a crafted HTTP request.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30211 โผ
๐ Read
via "National Vulnerability Database".
OURPHP <= 7.2.0 is vulnerable to SQL Injection.๐ Read
via "National Vulnerability Database".
โผ CVE-2023-30212 โผ
๐ Read
via "National Vulnerability Database".
OURPHP <= 7.2.0 is vulnerale to Cross Site Scripting (XSS) via /client/manage/ourphp_out.php.๐ Read
via "National Vulnerability Database".
โ Google leaking 2FA secrets โ researchers advise against new โaccount syncโ feature for now โ
๐ Read
via "Naked Security".
You waited 13 years for this feature in Google Authenticator. Now researchers are advising you to wait a while longer, just in case...๐ Read
via "Naked Security".
Sophos News
Naked Security โ Sophos News