In Tipask < 3.5.9, path parameters entered by the user are not validated when downloading attachments, a registered user can download arbitrary files on the…

Unrestricted Upload of File with Dangerous Type in GitHub repository publify/publify prior to 9.2.9. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku…

A Stored Cross-Site Scripting (XSS) vulnerability in DivvyDrive’s “aciklama” parameter could allow anyone to gain users’ session informations. Zafiyet ile ilgili Genel Bilgi, Etki ve…

Improper Access Control in GitHub repository publify/publify prior to 9.2.9. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database

A vulnerability, which was classified as problematic, has been found in Zoo Management System 1.0. Affected by this issue is /zoo/admin/public_html/view_accounts?type=zookeeper of the content module.…

A vulnerability, which was classified as problematic, was found in Badminton Center Management System. This affects the userlist module at /bcms/admin/?page=user/list. The manipulation of the…

A heap buffer overflow was discovered in copy_compressed_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. Zafiyet ile ilgili Genel Bilgi, Etki…

A heap buffer overflow was discovered in copy_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. Zafiyet ile ilgili Genel Bilgi, Etki…

Cross-site Scripting (XSS) – Reflected in GitHub repository collectiveaccess/providence prior to 1.8. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National…

Multiple Denial-of-Service vulnerabilities was discovered in the F-Secure Atlant and in certain WithSecure products while scanning fuzzed PE32-bit files cause memory corruption and heap buffer…