I’ve long since been storing credentials to databases and services in local configuration files during development. Sometimes these need to be to production systems, which makes this a security issue.
I’m wondering what the best practice h…
A vulnerability classified as problematic was found in Dalmann OCPP.Core up to 1.2.x. Affected by this vulnerability is an unknown functionality of the component StopTransaction Message Handler. The manipulation leads to insufficiently random values.
…
A vulnerability classified as critical has been found in Software AG WebMethods 10.11.x/10.15.x. Affected is an unknown function of the file wm.server/connect/. The manipulation leads to improper access controls.
This vulnerability is traded as CVE-20…
A vulnerability was found in Beijing Baichuo PatrolFlow 2530Pro up to 20231126. It has been rated as problematic. This issue affects some unknown processing of the file /log/mailsendview.php. The manipulation of the argument file with the input /boot/p…
A vulnerability was found in Beijing Baichuo S210 up to 20231123. It has been declared as critical. This vulnerability affects unknown code of the file /Tool/uploadfile.php of the component HTTP POST Request Handler. The manipulation of the argument fi…
A vulnerability was found in Beijing Baichuo S210 up to 20231121. It has been classified as critical. This affects an unknown part of the file /Tool/repair.php of the component HTTP POST Request Handler. The manipulation of the argument txt leads to sq…
A vulnerability was found in Beijing Baichuo Smart S20 up to 20231120 and classified as critical. Affected by this issue is some unknown functionality of the file /sysmanage/updateos.php of the component HTTP POST Request Handler. The manipulation of t…
A vulnerability has been found in Be Devious Web Development Password Reset with Code REST API Plugin up to 0.0.15 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to imprope…
A vulnerability, which was classified as problematic, was found in SoftLab Integrate Google Drive Plugin up to 1.3.2 on WordPress. Affected is an unknown function. The manipulation leads to open redirect.
This vulnerability is traded as CVE-2023-47548…
A vulnerability classified as problematic was found in CRM Perks Integration for Constant Contact and Contact Form 7 Plugin, WPForms Plugin, Elementor Plugin and Ninja Forms Plugin up to 1.1.4 on WordPress. This vulnerability affects unknown code. The …
