Company Name: b'Tor' Company HackerOne URL: https://hackerone.com/torproject Submitted By:b'andreien'Link to Submitters Profile:https://hackerone.com/b'andreien' Report Title:b"'Request English versions of web pages for...
Company Name: b'GitLab' Company HackerOne URL: https://hackerone.com/gitlab Submitted By:b'mrrajputhacker2'Link to Submitters Profile:https://hackerone.com/b'mrrajputhacker2' Report Title:b'Information Disclosure - Pvt Gitlab Issue Disclosing...
Company Name: b'HackerOne' Company HackerOne URL: https://hackerone.com/security Submitted By:b'0verw4tch'Link to Submitters Profile:https://hackerone.com/b'0verw4tch' Report Title:b'IDOR: Authorization Bypass in LockReport Mutation for...
More details have emerged about a set of now-patched cross-site scripting (XSS) flaws in the Microsoft Azure HDInsight open-source analytics...
Three interrelated high-severity security flaws discovered in Kubernetes could be exploited to achieve remote code execution with elevated privileges on...
A new ransomware family called 3AM has emerged in the wild after it was detected in a single incident in...
There is a new battlefield. It is global and challenging to defend. What began with a high-profile incident back in...
Microsoft has released software fixes to remediate 59 bugs spanning its product portfolio, including two zero-day flaws that have been...
In today's digital age, SaaS applications have become the backbone of modern businesses. They streamline operations, enhance productivity, and foster...
Microsoft is warning of a new phishing campaign undertaken by an initial access broker that involves using Teams messages as...
NAME__________Apple macOS Monterey information disclosurePlatforms Affected:Apple macOS Monterey 12.6.7Risk Level:7.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Monterey could allow a remote attacker to...
NAME__________Simple Download Counter plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Simple Download Counter Plugin for WordPress 1.6Risk Level:6.4Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Simple Download...
NAME__________Cockpit CMS file uploadPlatforms Affected:Cockpit-HQ Cockpit 2.6.3Risk Level:5.3Exploitability:UnprovenConsequences:File Manipulation DESCRIPTION__________Cockpit CMS could allow a remote attacker to upload arbitrary files,...
NAME__________Argo CD denial of servicePlatforms Affected:Argo Project Argo CD 2.6.13 Argo Project Argo CD 2.7.11 Argo Project Argo CD 2.8.0...
NAME__________Apple iOS and iPadOS code executionPlatforms Affected:Apple iOS 16.2 Apple iPadOS 16.2Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Apple iOS and iPadOS could allow...
NAME__________Samsung Exynos Mobile Processor and Wearable Processor denial of servicePlatforms Affected:Samsung Exynos Mobile Processor Samsung Exynos Wearable ProcessorRisk Level:2Exploitability:UnprovenConsequences:Denial of...
NAME__________Apple macOS Big Sur information disclosurePlatforms Affected:Apple macOS Big Sur 11.7.8Risk Level:3.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Apple macOS Big Sur could allow a...
NAME__________Microsoft Visual Studio privilege escalationPlatforms Affected:Microsoft Visual Studio 2019 16.11 Microsoft Visual Studio 2022 17.2 Microsoft Visual Studio 2022 17.4...
NAME__________Samsung Exynos Mobile Processor, Automotive Processor, and Modem denial of servicePlatforms Affected:Samsung Exynos Mobile Processor Samsung Automotive Processor Samsung ModemRisk...
NAME__________Adobe Experience Manager cross-site scriptingPlatforms Affected:Adobe Experience Manager Cloud Service (CS) Adobe Experience Manager 6.5.18.0Risk Level:5.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________Adobe Experience Manager...
NAME__________NVIDIA BlueField Data Processing Unit privilege escalationPlatforms Affected:NVIDIA BlueField Data Processing UnitRisk Level:7.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________NVIDIA BlueField Data Processing Unit could...
NAME__________SAP BusinessObjects Business Intelligence Platform information disclosurePlatforms Affected:SAP BusinessObjects Business Intelligence Platform 430Risk Level:5.3Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SAP BusinessObjects Business Intelligence Platform...
NAME__________SAP NetWeaver information disclosurePlatforms Affected:SAP NetWeaver 7.50Risk Level:5.8Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________SAP NetWeaver could allow a remote attacker to obtain sensitive information,...
NAME__________Blood Bank & Donor Management cross-site scriptingPlatforms Affected:PHPGurukul Blood Bank & Donor Management 2.2Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Blood Bank & Donor...
