A vulnerability was found in Tandoor recipes up to 1.5.27. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component External Storage Handler. The manipulation leads to information disclosure.
Thi…
A vulnerability was found in Tandoor recipes up to 1.5.23. It has been classified as critical. Affected is an unknown function of the component Jinja2 Template Handler. The manipulation leads to improper neutralization of special elements used in a tem…
A financially motivated threat actor has been linked to an ongoing phishing email campaign that has been ongoing since at least July 2024 specifically targeting users in Poland and Germany.
The attacks have led to the deployment of various payloads, su…
(found on reddit)
[translation: the website is programmed to reject the login if it is the correct password and if it is the first login attempt]
Assume that the scheme is to reject the first correct login attempt – because otherwise it d…
A vulnerability was found in Rockwell Automation DataEdgePlatform DataMosaix Private Cloud up to up to 7.11 and classified as problematic. This issue affects some unknown processing. The manipulation leads to information disclosure.
The identification…
A vulnerability has been found in Silabs SiSDK 2024.06.0 and classified as critical. This vulnerability affects unknown code of the component NWK APS Layer. The manipulation leads to buffer overflow.
This vulnerability was named CVE-2024-6351. The att…
A vulnerability, which was classified as problematic, was found in Arm Neoverse V2, Neoverse V3, Neoverse V3AE, Cortex-X3, Cortex-X4 and Cortex-X925. This affects an unknown part. The manipulation leads to improper neutralization of value delimiters.
…
Let’s assume we have a web-application that stores its auth token in the browser’s sessionStorage/localStorage and does not use cookies. If I’m not completely mistaken, such a web application is not vulnerable against CSRF attacks, right?
…
A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /dashboard/admin/submit_plan_new.php. The manipulation of the argument planid lead…
A vulnerability classified as critical was found in SourceCodester Best Employee Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/View_user.php of the component Administrative Endpoint. The manipulati…
