22.5 C
Johannesburg

CVE-2020-7617

ini-parser through 0.0.2 is vulnerable to Prototype Pollution.The library could be tricked into adding or modifying properties of Object.prototype using a '__proto__' payload. Read more

CVE-2020-1934 (http_server)

In Apache HTTP Server 2.4.0 to 2.4.41, mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server. Read more

CVE-2020-1949 (sling_cms)

Scripts in Sling CMS before 0.16.0 do not property escape the Sling Selector from URLs when generating navigational elements for the administrative consoles and are vulnerable to reflected XSS...

CVE-2020-1949

Scripts in Sling CMS before 0.16.0 do not property escape the Sling Selector from URLs when generating navigational elements for the administrative consoles and are vulnerable to reflected XSS...

CVE-2020-3909 (icloud, ipados, iphone_os, itunes, mac_os_x, tvos, watchos)

A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows...

CVE-2020-3908 (mac_os_x)

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or...

CVE-2020-3907

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or...

CVE-2020-3900

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows...

CVE-2018-11106

NETGEAR has released fixes for a pre-authentication command injection in request_handler.php security vulnerability on the following product models: WC7500, running firmware versions prior to 6.5.3.5; WC7520, running firmware versions...

CVE-2020-11455 (limesurvey)

LimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application/controllers/admin/LimeSurveyFileManager.php. Read more

Latest article

Coronavirus: Could Etsy Help Save the World?

Long-time Slashdot reader theodp writes: With the CDC now recommending wearing cloth face coverings in public settings, Etsy has called in the cavalry, encouraging...

Conflux Network mainnet to launch

Unlike most of its peers, Conflux designed a three-phase launch plan to roll out the functionalities and features step-by-step.Read more

Overcome the challenges of protecting and managing a remote workforce with Panda Security

The Webinars will explore the challenges of protecting and managing a remote workforce.Read more