An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication…

Stored XSS in PartKeepr 1.4.0 Edit section in multiple api endpoints via name parameter. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku…

MitraStar GPT-2541GNAC-N1 (HGU) 100VNZ0b33 devices allow remote authenticated users to obtain root access by executing command “deviceinfo show file &&/bin/bash” because of incorrect sanitization of…

JerryScript Git version 14ff5bf does not sufficiently track and release allocated memory via jerry-core/ecma/operations/ecma-regexp-object.c after RegExp, which causes a memory leak. Zafiyet ile ilgili Genel…

OMPL v1.5.2 contains a memory leak in VFRRT.cpp Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını Oku Kaynak: National Vulnerability Database

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository axios/axios prior to 0.26. Zafiyet ile ilgili Genel Bilgi, Etki ve Çözümleri için Devamını…

Improved Host header checks to reject requests not sent to a well-known local hostname or IP, or the server-specified hostname. Zafiyet ile ilgili Genel Bilgi,…

A cross site scripting (XSS) vulnerability in the error page of Totolink N200RE and N100RE Routers 2.0 allows attackers to execute arbitrary web scripts or…

A reflected cross site scripting (XSS) vulnerability in Xtend Voice Logger 1.0 allows attackers to execute arbitrary web scripts or HTML, via the path of…

The Java Remote Management Interface of all versions of Orlansoft ERP was discovered to contain a vulnerability due to insecure deserialization of user-supplied content, which…