![]() This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. □ CVE-2023-48795The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. ![]() □ CVE-2023-49153Cross-Site Request Forgery (CSRF) vulnerability in Saiful Islam Add to Cart Text Changer and Customize Button, Add Custom Icon.This issue affects Add to Cart Text Changer and Customize Button, Add Custom Icon: from n/a through 21:24:44 □ CVE-2023-48433Online Voting System Project v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'username' parameter of the login_action.php resource does not validate the characters received and they are sent unfiltered to the 21:24:45 Exploitation of this issue requires user 21:24:51 A low-privilege authenticated attacker could leverage this vulnerability to redirect users to malicious websites. ![]() □ CVE-2023-22256Experience Manager versions 6.5.15.0 (and earlier) are affected by a URL Redirection to Untrusted Site ('Open Redirect') vulnerability. □ CVE-2022-29143Microsoft SQL Server Remote Code Execution 21:54:32 □ CVE-2022-21972Windows Point-to-Point Tunneling Protocol Remote Code Execution 23:24:32 ![]() □ CVE-2022-22011Windows Graphics Component Information Disclosure 00:24:32 □ CVE-2022-22014Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution 00:24:33 □ CVE-2022-22019Remote Procedure Call Runtime Remote Code Execution 00:24:38 □ CVE-2022-26923Active Directory Domain Services Elevation of Privilege 00:24:44 □ CVE-2022-26927Windows Graphics Component Remote Code Execution 00:24:49 ![]() □ CVE-2022-21833Virtual Machine IDE Drive Elevation of Privilege 00:24:50 □ CVE-2022-21835Microsoft Cryptographic Services Elevation of Privilege 01:24:32 □ CVE-2022-21838Windows Cleanup Manager Elevation of Privilege 01:24:33 ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |