NAME NocoDB server-side request forgery Platforms Affected:NocoDB NocoDB 0.91.7Risk Level:9.1Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION NocoDB is vulnerable to server-side request...
NAME Envoy denial of service Platforms Affected:Envoy Envoy 1.22.0Risk Level:10Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Envoy could allow a remote attacker to bypass...
NAME Dolibarr ERP/CRM cross-site scripting Platforms Affected:Dolibarr Dolibarr ERP/CRM 3.0.0 Dolibarr Dolibarr ERP/CRM 3.3.1 Dolibarr Dolibarr ERP/CRM 3.5.3 Dolibarr Dolibarr...
NAME Couchbase Sync Gateway privilege escalation Platforms Affected:Couchbase Sync Gateway 3.0.1Risk Level:8.8Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Couchbase Sync Gateway could allow a...
NAME Lepin EP-KP001 security bypass Platforms Affected:Lepin EP-KP001 KP001_V19Risk Level:8.2Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Lepin EP-KP001 could allow a remote attacker to...
NAME ITarian platform (SAAS / on-premise) code execution Platforms Affected:ITarian platform (SAAS / on-premise)Risk Level:9.9Exploitability:UnprovenConsequences:Gain Access DESCRIPTION ITarian platform (SAAS...
Organizations face the constant need to protect these APIs from attacks so they can protect organizational data. Organizations are rapidly...
Chinese cybercriminals are using SeaFlower backdoored versions of iOS and Android Web3 wallets to steal users’ seed phrase. Researchers from...
Daily Vulnerability Trends (sourced from VulnMon) CVE NAMECVE DescriptionCVE-2022-31769IBM Spectrum Copy Data Management 2.2.0.0 through 2.2.15.0 could allow a remote...
Experts spotted a new Linux rootkit, dubbed ‘Syslogk,’ that uses specially crafted “magic packets” to activate a dormant backdoor on the...
