Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-35796

A vulnerability has been identified in SINEMA Server V14 (All versions). The affected application improperly sanitizes certain SNMP configuration data retrieved from monitored devices. An attacker with access to a monitored device could perform a stored cross-site scripting (XSS) attack that may lead to arbitrary code execution with SYSTEM privileges on the application server. (ZDI-CAN-19823)

CVE
Open in Source
#xss#vulnerability#perl#pdf

%PDF-1.5 %���� 51 0 obj << /Length 2924 /Filter /FlateDecode >> stream xڵZ[s�J~���mQUD���M�VR>;^I��Tr��e*��O��o�\$@H!�U��������2 ��z�/~�]�}’BO*��7{�d�Q�I�A�7[x_�i��Ӽ ���i:��!~V�0C��sVn`����6������b��ͫ��do��~��.�sA���#D ���/���~�€��{�o�=.X 8���7���Eh�r�MO�(cz�f�%����� ��� ��VA��P(�$�<�����䩑�TJ֋Aȣs 5FXS��wlS��iV���ȶU�/��a! "�zi3PLt�� B���`2�d|N$�o��5ῧS�� � ��}%�@�@�~X����@b*�M> ��߭�H�e+t�#18�&�k6����E�X�sr �#����#pI_�8ذ�� �I�Y���I$[>}s7�u���rq�x���pPF�wSD����1�D����:����aD���܄�� �BҔ���6�"͐K�;� �3�W����ȱ��I�mr3��*���s�Ӑ2P��o�!!��,����Y�]�UB�UW��Hs��� ��(�밚���@A��OөY��b�~K�Ԇ���@d$|��IK��N�:�`䂋���X�,)���������d B�3~��~��6Cn*�f��U�$!Z?���=<�.��l�-6����f�L���;���4Cs�R�U�`����۹M�5 �2 0}��8�������iG:0�p?]���b�6�7�]�����j ����0��9���!�?B��)�Q%s������ї�z��sXW��j�W�’����~<|�<�7����=�$�O��u�LY�1/08����ܪÄi����VN�`��Si�k�is����dpH�Vi��/l�5)�e�٧F�7�,��ki��?�+�XkNC3���H3#���� ȉvK �a����l|�ě_"�-��+[���l�.S��:��’+w��6��l9�b`6���� J)�|������7kx\�ga����l��`=&mNf�]]j�ǭI�����Wf��vjn>Afffݒ/\i��1’ s�.c(��@{�kfʲ�Sn�y��?w��˫�:D���©��*�`e�S/Oia�a���t�jG�M��n\�17?��ۇ�%�*1�(5�p �$�2��B8d2���p��@J��n����j6���(fn}� E��FBz1����H ����T��뇫ٴC�q�:T�+�$((�gEb�d� ���=��/��qJ�f���Ȁ���H� �d|�������]��"�PO@��G�RQ������o�!�DB��#/�@#re>�?� {cd�(�����)Ś�8�E�=�Nǵ����j �rc����J���kh�%��%�Bg�"�X�6��Ѕj�����HX�Z�0�#M�L 0,2��`�2�_���86� x�龖�.�P{Jr^AuX�;oxlX<@�5*O�mk��ښ����������� I�j�,��ʖ,����fw���!�������r�@n���2�� ��U���~ߎ�T%�j������I[eiM��w%x��VCըoP�_�%��1`D� �ߓ��E��x�,@��������o�Z�ϟԳ�_��esP/��Wyǫh���c���LlSG�q"[��Cg��Lz�pwݕ]D���}�8�\D��PهD��"B�MA:� c �_�9����}^�H��&۷7����� }L0�ݽš�S\�~���Sbo���L@��6�_�6¡���. 7 �`@֞���g�7B=Q�F��ĖC���k�D���v��Tty�Q�3i[WC������Ж�����Y@�� a�YD� ���֗!M������ ׁ��U�o��JGjd��ѥ@,N��B����.��W��U�*ܐ�’NC,��>�SSȮN�2MZP�Tљꌅ`�P+���"�D��A�X�~|7��>tg�����I�2���"�㳼#-���O�W����.�A�x �1�5��’���,�@Mq��2��x{;��30��Z��Ԑ�ۚa{�Hl��eY�D(�%rc�8d{h�o�Y;��+�b�/W��z���O�-6U���Hd\M���rd����ޱ��$x�t�l*U@\’�v+%G+6[+��qe���Y��7@A�7��Hm���t���pb=8rF��L�|ẗi:OվVb��� ��n�d�2P����>�{e4�p��F{l߉���rj���S�i}r��q��TG�2��t�HC .w�VY�ZQ�-���=lÊ ���ׂ>e���P��&Y\�FS��SUm�˷o_^^B�Ai��; �z��Ŀm 4 �� d��� f�lp��bl@�N*W+����s��o��Fy�� ��8F��dg�aB��}�G��A�]�r��t�Xdn �Fޝ?���FG��’�-h�!����$��L7xc�h���Fݹ"���7������nm��늞D� �O�’�G�$PM�0>�vGP�>_?A#��$����? ���M ��ӫ�ͽk�ǝ0n���y|8a��w�u��L ��3v�L�!�7�f΢p�ߵs6=}���2�`oM�U�6s�-�}}f�’� �_4hK�:[fU+�<6Mz�Uw

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE