A vulnerability was found in firefly-iii up to 6.1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Webhooks Handler. The manipulation leads to basic cross site scripting.
This vulnerability is…
A vulnerability was found in PyCryptodome and pycryptodomex up to 3.19.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to observable internal behavioral discrepancy.
This vulne…
A vulnerability was found in Lotos up to 0.1.1. It has been classified as critical. Affected is the function buffer_avail of the file buffer.h. The manipulation leads to use after free.
This vulnerability is traded as CVE-2024-22088. The attack can on…
A vulnerability was found in foxweb Pico up to f3b69a6 and classified as critical. This issue affects some unknown processing of the file main.c of the component Long URI Handler. The manipulation leads to stack-based buffer overflow.
The identificati…
A vulnerability has been found in Cherry up to 4b877df and classified as critical. This vulnerability affects the function handle_request of the file http.c. The manipulation leads to stack-based buffer overflow.
This vulnerability was named CVE-2024-…
A vulnerability, which was classified as problematic, was found in ZTE ZXCLOUD iRAI up to V7.01.04P1_1104. This affects an unknown part. The manipulation leads to uncontrolled search path.
This vulnerability is uniquely identified as CVE-2023-41782. L…
A vulnerability, which was classified as problematic, has been found in Debian Linux on cpio. Affected by this issue is some unknown functionality. The manipulation leads to path traversal.
This vulnerability is handled as CVE-2023-7207. The attack ma…
Ivanti has released security updates to address a critical flaw impacting its Endpoint Manager (EPM) solution that, if successfully exploited, could result in remote code execution (RCE) on susceptible servers.
Tracked as CVE-2023-39336, the vulnerabil…
Ukrainian cybersecurity authorities have disclosed that the Russian state-sponsored threat actor known as Sandworm was inside telecom operator Kyivstar’s systems at least since May 2023.
The development was first reported by Reuters…
A new variant of remote access trojan called Bandook has been observed being propagated via phishing attacks with an aim to infiltrate Windows machines, underscoring the continuous evolution of the malware.
Fortinet FortiGuard Labs, which ide…
