Latest News

Book Recording App, as submitted on 2024-09-24, suffers from a persistent cross site scripting vulnerability.

Debian Linux Security Advisory 5786-1 - Integer overflows flaws were discovered in the Compound Document Binary File format parser of libgsf, the GNOME Project G Structured File Library, which could result in the execution of arbitrary code if a specially crafted file is processed.

Debian Linux Security Advisory 5785-1 - Dom Walden discovered that the AbuseFilter extension in MediaWiki, a website engine for collaborative work, performed incomplete authorisation checks.

OpenMediaVault version 7.4.2-2 suffers from a PHP code injection vulnerability.

Netis MW5360 suffers from a PHP code injection vulnerability.

Hikvision IP Cameras suffer from a cross site request forgery vulnerability.

Apple has fixed a security issue in iOS (and iPadOS) that could have leaked a user's passwords through the VoiceOver feature.

GeoServer version 2.25.1 suffers from a PHP code injection vulnerability.

Gambio Online Webshop version 4.9.2.0 suffers from a PHP code injection vulnerability.

China’s Salt Typhoon hacked AT&T, Verizon, and Lumen, compromising wiretap systems used in criminal investigations. The breach, linked…