The package whoogle-search before 0.7.2 is vulnerable to Cross-site Scripting (XSS) via the query string parameter q. In the case where it does not contain the http string, it is used to build the error_message that is then rendered in the error.html t…
[in2code/lux] SQL Injection in typo3 extension “LUX – TYPO3 Marketing Automation”
A SQL injection issue was discovered in the lux extension before 17.6.1, and 18.x through 24.x before 24.0.2, for TYPO3.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-35628
https://github.com/FriendsOfPHP/security-advisories/blob/master/in2code…
[io.fabric8:kubernetes-client] fabric8 kubernetes-client vulnerable
fabric8 Kubernetes client had an arbitrary code execution flaw in versions 5.0.0-beta-1 and higher. Attackers could potentially insert malicious YAMLs due to misconfigured YAML parsing.
References
https://nvd.nist.gov/vuln/detail/CVE-2021-4178
https:/…
[github.com/mattermost/mattermost-server/v6] Mattermost users could access some sensitive information via API call
Unrestricted information disclosure of all users in Mattermost version 6.7.0 and earlier allows team members to access some sensitive information by directly accessing the APIs.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-2401
https://matterm…
[codecov] Codecov prior to 2.0.16 does not sanitize gcov arguments
This affects the package codecov before 2.0.16. The vulnerability occurs due to not sanitizing gcov arguments before being being provided to the popen method.
References
https://nvd.nist.gov/vuln/detail/CVE-2019-10800
https://github.com/codecov/codeco…
[vm2] vm2 before 3.6.11 vulnerable to sandbox escape
This affects the package vm2 before 3.6.11. It is possible to trigger a RangeError exception from the host rather than the “sandboxed” context by reaching the stack call limit with an infinite recursion. The returned object is then used to reference th…
[org.apache.tapestry:tapestry-core] Apache Tapestry 5.8.1 vulnerable to ReDoS via Content Types causing catastrophic backtracking
Apache Tapestry up to version 5.8.1 is vulnerable to Regular Expression Denial of Service (ReDoS) in the way it handles Content Types. Specially crafted Content Types may cause catastrophic backtracking, taking exponential time to complete. Specificall…
[com.ruoyi:ruoyi] RuoYi 4.7.3 vulnerable to arbitrary file upload in background management module
An arbitrary file upload vulnerability in the background management module of RuoYi v4.7.3 and below allows attackers to execute arbitrary code via a crafted HTML file.
References
https://nvd.nist.gov/vuln/detail/CVE-2022-32065
https://github.com/yang…
[@strapi/strapi] Strapi 4.1.12 Cross-site Scripting via crafted file
An unrestricted file upload vulnerability in the Add New Assets function of Strapi v4.1.12 allows attackers to execute arbitrary code via a crafted file. After an authenticated attacker uploads a file containing a malicious URL, a victim copies and pas…
[october/system] October CMS upload process vulnerable to RCE via Race Condition
Impact
This advisory affects plugins that expose the October\Rain\Database\Attach\File::fromData as a public interface. This vulnerability does not affect vanilla installations of October CMS since this method is not exposed or used by the system inter…