In Zephyr bluetooth mesh core stack, an out-of-bound write vulnerability can be triggered during provisioning. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını…

The Livesearch macro in Confluence Server and Data Center before version 7.4.5, from version 7.5.0 before 7.6.3, and from version 7.7.0 before version 7.7.4 allows…

In Pandora FMS v7.0NG.761 and below, in the agent creation section, the alias parameter is vulnerable to a Stored Cross Site-Scripting. This vulnerability can be…

In Pandora FMS v7.0NG.761 and below, in the file manager section, the dirname parameter is vulnerable to a Stored Cross Site-Scripting. This vulnerability can be…

A vulnerability exists in the HTTP web interface where the web interface does not sufficiently verify if a well-formed, valid, consistent request was intentionally provided…

A vulnerability exists in the http web interface where the web interface does not validate data in an HTTP header. This causes a possible HTTP…

This affects the package thenify before 3.3.1. The name argument provided to the package can be controlled by users without any sanitization, and this is…

This affects all versions of package node-import. The “params” argument of module function can be controlled by users without any sanitization.b. This is then provided…

All versions of package set-deep-prop are vulnerable to Prototype Pollution via the main functionality. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku…

All versions of package @ianwalter/merge are vulnerable to Prototype Pollution via the main (merge) function. Maintainer suggests using @generates/merger instead. Zafiyet ile ilgili Genel Bilgi,…