Security
Headlines
HeadlinesLatestCVEs

Tag

#windows

Hesk Rtl CMS 1 Cross Site Scripting

Hesk Rtl CMS version 1 suffers from a cross site scripting vulnerability.

Packet Storm
#xss#vulnerability#windows#google#php#auth#firefox
haraj 1.1 Add Administrator

haraj version 1.1 suffers from an add administrator vulnerability.

HaasCMS 1.0 Cross Site Scripting

HaasCMS version 1.0 suffers from a cross site scripting vulnerability.

Gusto Recipes Management 1.5.1 Cross Site Scripting

Gusto Recipes Management version 1.5.1 suffers from a cross site scripting vulnerability.

Global Domains International 2.0 Cross Site Scripting

Global Domains International version 2.0 suffers from a cross site scripting vulnerability.

FlightPath LMS 5.0-rc2 Cross Site Scripting

FlightPath LMS version 5.0-rc2 suffers from a cross site scripting vulnerability.

A week in security (August 21 - August 27)

Categories: News Tags: week Tags: security Tags: august Tags: 2023 Tags: trusted advisor Tags: cyrus Tags: A list of topics we covered in the week of August 21 to August 27 of 2023 (Read more...) The post A week in security (August 21 - August 27) appeared first on Malwarebytes Labs.

CVE-2023-23473: Security Bulletin: IBM InfoSphere Information Server is vulnerable to cross-site request forgery (CVE-2023-23473)

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 245400.

CVE-2023-40036: GHSL-2023-112, GHSL-2023-102, GHSL-2023-103, GHSL-2023-092: Buffer Overflows in Notepad++ - CVE-2023-40031, CVE-2023-40036, CVE-2023-40164, CVE-2023-40166

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to global buffer read overflow in `CharDistributionAnalysis::HandleOneChar`. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time of publication, no known patches are available in existing versions of Notepad++.