An authenticated user can import a repository from GitHub into GitLab. If a user attempts to import a repo from an attacker-controlled server, the server will reply with a Redis…
WordPress Quiz and Survey Master plugin versions 8.0.8 and below suffer from a missing authentication vulnerability that allows an attacker to delete media from the WordPress instance.
WordPress Quiz and Survey Master plugin versions 8.0.8 and below suffer from a cross site request forgery vulnerability.
B&R Systems Diagnostics Manager versions above or equal to 3.00 and below or equal to C4.93 suffer from a cross site scripting vulnerability.
Apple Security Advisory 2023-02-13-1 – iOS 16.3.1 and iPadOS 16.3.1 addresses code execution and use-after-free vulnerabilities.
Apple Security Advisory 2023-02-13-2 – macOS Ventura 13.2.1 addresses code execution and use-after-free vulnerabilities.
Apple Security Advisory 2023-02-13-3 – Safari 16.3.1 addresses a code execution vulnerability.
B&R Systems Diagnostics Manager versions above or equal to 3.00 and below or equal to C4.93 suffer from a cross site scripting vulnerability.
XWorm Trojan version 2.1 suffers from a denial of service condition due to a null pointer vulnerability.