Aggregator
Metatron
1 year 9 months ago
cohenido
IBM security advisory (AV24-547)
1 year 9 months ago
Canadian Centre for Cyber Security
Akira
1 year 9 months ago
cohenido
【情报资料】联名公开支持***的前安全和情报官员都有哪些人?
1 year 9 months ago
这两份公开信对于研究美国情报和安全界的政治生态还是有很多高价值信息值得挖掘。
Metatron
1 year 9 months ago
cohenido
Metatron
1 year 9 months ago
cohenido
Metatron
1 year 9 months ago
cohenido
Metatron
1 year 9 months ago
cohenido
Metatron
1 year 9 months ago
cohenido
Metatron
1 year 9 months ago
cohenido
CVE-2024-9395 | Mozilla Firefox up to 130 on Android Filename ui layer (Nessus ID 207979)
1 year 9 months ago
A vulnerability was found in Mozilla Firefox up to 130 on Android. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Filename Handler. The manipulation leads to improper restriction of rendered ui layers.
This vulnerability is handled as CVE-2024-9395. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-9391 | Mozilla Firefox up to 130 on Android Full-screen Mode clickjacking (Nessus ID 207979)
1 year 9 months ago
A vulnerability was found in Mozilla Firefox up to 130 on Android. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Full-screen Mode. The manipulation leads to clickjacking.
This vulnerability is known as CVE-2024-9391. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-25632 | eLabFTW up to 5.0.x saml_team_create privileges assignment (GHSA-6m7p-gh9f-5mgg)
1 year 9 months ago
A vulnerability was found in eLabFTW up to 5.0.x. It has been classified as critical. Affected is the function saml_team_create. The manipulation leads to incorrect privilege assignment.
This vulnerability is traded as CVE-2024-25632. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Akira
1 year 9 months ago
cohenido
Akira
1 year 9 months ago
cohenido
CVE-2024-41673 | Decidim up to 0.27.7 Version Control cross site scripting (GHSA-cc4g-m3g7-xmw8)
1 year 9 months ago
A vulnerability was found in Decidim up to 0.27.7 and classified as problematic. This issue affects some unknown processing of the component Version Control. The manipulation leads to cross site scripting.
The identification of this vulnerability is CVE-2024-41673. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-9400 | Mozilla Firefox up to 128.2/130 JIT Compilation memory corruption (Nessus ID 207987)
1 year 9 months ago
A vulnerability, which was classified as critical, was found in Mozilla Firefox up to 128.2/130. This affects an unknown part of the component JIT Compilation. The manipulation leads to memory corruption.
This vulnerability is uniquely identified as CVE-2024-9400. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-9400 | Mozilla Thunderbird up to 128.2/130 JIT Compilation memory corruption (Nessus ID 207987)
1 year 9 months ago
A vulnerability has been found in Mozilla Thunderbird up to 128.2/130 and classified as critical. This vulnerability affects unknown code of the component JIT Compilation. The manipulation leads to memory corruption.
This vulnerability was named CVE-2024-9400. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2024-47604 | NuGet Gallery up to 2024.09.25 HTML Element HTML injection
1 year 9 months ago
A vulnerability, which was classified as problematic, has been found in NuGet Gallery up to 2024.09.25. Affected by this issue is some unknown functionality of the component HTML Element Handler. The manipulation leads to HTML injection.
This vulnerability is handled as CVE-2024-47604. The attack may be launched remotely. There is no exploit available.
vuldb.com