Two significant updates to our platform-specific guidance and a home-working tweak for VPN …
An exploitable denial of service vulnerability exists in the freeDiameter functionality of freeDiameter 1.3.2. A specially crafted Diameter …
In Shopware before 6.2.3, the database password is leaked to an unauthenticated user when a DriverException occurs and verbose error …
In Shopware before 6.2.3, authenticated users are allowed to use the Mediabrowser fileupload feature to upload SVG images containing …
Shopware before 6.2.3 is vulnerable to a Server-Side Request Forgery (SSRF) in its "Mediabrowser upload by URL" feature. This …
Concrete5 before 8.5.3 allows Unrestricted Upload of File with Dangerous Type such as a .phar …
NCP Secure Enterprise Client before 10.15 r47589 allows a symbolic link attack on enumusb.reg via Support …
Gambio GX before 4.0.1.0 allows XSS in …
Gambio GX before 4.0.1.0 allows admin/admin.php …
Gambio GX before 4.0.1.0 allows SQL Injection in …
Gambio GX before 4.0.1.0 allows SQL Injection in …
Dell EMC OpenManage Server Administrator (OMSA) versions 9.4 and prior contain multiple path traversal vulnerabilities. An unauthenticated …
●●●
NVD
EXPLOITS
SECURELIST