Security
Headlines
HeadlinesLatestCVEs

Source

CVE

CVE-2023-37467: SECURITY: Don't reuse CSP nonce between anonymous requests · discourse/discourse@0976c8f

Discourse is an open source discussion platform. Prior to version 3.1.0.beta7 of the `beta` and `tests-passed` branches, a CSP (Content Security Policy) nonce reuse vulnerability was discovered could allow cross-site scripting (XSS) attacks to bypass CSP protection for anonymous (i.e. unauthenticated) users. There are no known XSS vectors at the moment, but should one be discovered, this vulnerability would allow the XSS attack to bypass CSP and execute successfully. This vulnerability isn't applicable to logged-in users. Version 3.1.0.beta7 contains a patch. The stable branch doesn't have this vulnerability. A workaround to prevent the vulnerability is to disable Google Tag Manager, i.e., unset the `gtm container id` setting.

CVE
Open in Source
#xss#vulnerability#google#auth
CVE-2023-39015: There's a code injection vulnerability of `us.codecraft.webmagic.downloader.PhantomJSDownloader` · Issue #1122 · code4craft/webmagic

webmagic-extension v0.9.0 and below was discovered to contain a code injection vulnerability via the component us.codecraft.webmagic.downloader.PhantomJSDownloader.

CVE-2023-39010: In 0.42 and before there's a code injection vulnerability of `boofcv.io.calibration.CalibrationIO.load` · Issue #406 · lessthanoptimal/BoofCV

BoofCV 0.42 was discovered to contain a code injection vulnerability via the component boofcv.io.calibration.CalibrationIO.load. This vulnerability is exploited by loading a crafted camera calibration file.

CVE-2023-39021: My-CVE-Public-References/com_wix_wix-embedded-mysql at main · LetianYuan/My-CVE-Public-References

wix-embedded-mysql v4.6.1 and below was discovered to contain a code injection vulnerability in the component com.wix.mysql.distribution.Setup.apply. This vulnerability is exploited via passing an unchecked argument.

CVE-2023-38992: SQL注入 · Issue #5173 · jeecgboot/jeecg-boot

jeecg-boot v3.5.1 was discovered to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData.

CVE-2023-37754: Full version Remote Command Execution · Issue #675 · PowerJob/PowerJob

PowerJob v4.3.3 was discovered to contain a remote command execution (RCE) vulnerability via the instanceId parameter at /instance/detail.

CVE-2023-39020: My-CVE-Public-References/edu_stanford_nlp_stanford-parser at main · LetianYuan/My-CVE-Public-References

stanford-parser v3.9.2 and below was discovered to contain a code injection vulnerability in the component edu.stanford.nlp.io.getBZip2PipedInputStream. This vulnerability is exploited via passing an unchecked argument.

CVE-2023-31937: BugReport/php/Rail-Pass-Management-System/bug3-SQL-Injection-editid.md at main · DiliLearngent/BugReport

Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file.

CVE-2023-31933: BugReport/php/Rail-Pass-Management-System/bug4-SQL-Injection-editid2.md at main · DiliLearngent/BugReport

Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-pass-detail.php file.

CVE-2023-31935: BugReport/php/Rail-Pass-Management-System/bug1-XSS-in-Admin-Name.md at main · DiliLearngent/BugReport

Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the emial parameter of admin-profile.php.