Cari Təhlükəsizlik Zəiflikləri

Kirby is a flat-file CMS. In versions prior to 3.5.8.2,…

Use of hard-coded TLS certificate by default allows an attacker…

pikepdf before 2.10.0 allows an XXE attack against PDF XMP…

myVesta Control Panel before 0.9.8-26-43 and Vesta Control Panel before…

Multiple stored cross-site scripting vulnerabilities in the web user interface…

Juiker app hard-coded its AES key in the source code.…

Heron versions <= 0.20.4-incubating allows CRLF log injection because of…

A broken access control vulnerability in the KillDupUsr_func function of…

An improper input validation vulnerability in the TLS certificate generation…

A broken access control vulnerability in the SubNet_handler_func function of…

Observable discrepancies in the login process allow an attacker to…

Session fixation and insufficient session expiration vulnerabilities allow an attacker…