A vulnerability classified as critical was found in SFS Consulting ww.Winsure up to 4.6.1. This vulnerability affects unknown code. The manipulation leads to xml external entity reference.
This vulnerability was named CVE-2024-7098. The attack can be …
A vulnerability classified as problematic has been found in Mattermost Desktop App up to 5.8.0. This affects an unknown part. The manipulation leads to improper access controls.
This vulnerability is uniquely identified as CVE-2024-39772. It is possib…
A vulnerability was found in Mattermost Desktop App up to 5.8.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Electron Fuse Handler. The manipulation leads to protection mechanism failure.
Thi…
I have an app where a person enters their card number, the cardholder’s name, the expiration date and the cvv. I am now making it pci/dss-compliant. I will store the card number in an encrypted way. Can I store the cardholder’s name the pe…
I have a C program that, when executed on my Ubuntu virtual machine, provides a regular shell. The program includes the following code:
#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
int main() {
setuid(0…
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220. It has been declared as critical. Affected by this vulnerability is the function setWiFiAclRules. The manipulation of the argument desc leads to buffer overflow.
This vulnerability…
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220. It has been classified as critical. Affected is the function setWizardCfg. The manipulation of the argument ssid5g leads to buffer overflow.
This vulnerability is traded as CVE-202…
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified as critical. This issue affects the function UploadCustomModule. The manipulation of the argument File leads to buffer overflow.
The identification of this vulnerabil…
A vulnerability has been found in MFASOFT Secure Authentication Server and classified as critical. This vulnerability affects unknown code of the file /api-selfportal/get-info-token-properties. The manipulation of the argument serial leads to improper …
A now-patched critical security flaw impacting Google Cloud Platform (GCP) Composer could have been exploited to achieve remote code execution on cloud servers by means of a supply chain attack technique called dependency confusion.
The vulnerability h…
