Laravel is a web application framework. Laravel prior to versions 8.75.0, 7.30.6, and 6.20.42 contain a possible cross-site scripting (XSS) …
In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream …
The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner …
74CMS v6.0.4 was discovered to contain a cross-site scripting (XSS) vulnerability via …
DouPHP v1.6 was discovered to contain a cross-site scripting (XSS) vulnerability via …
Affected versions of Atlassian Jira Server and Data Center allow a user who has had their Jira Service Management access revoked to export …
Affected versions of Atlassian Jira Server and Data Center allow attackers with access to an administrator account that has had its access …
KNIME Server before 4.13.4 allows directory traversal in a request for a client …
KNIME Server before 4.13.4 allows XSS via the old WebPortal login …
An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a …
A command injection vulnerability exists in Ivanti Avalanche before 6.3.3 allows an attacker with access to the Inforail Service to perform …
There is an Improper permission control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts …
There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to process …
There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of …