Jun 15, 2021 5:00:00 AM |
By
Robert Punnett & Auner Moncada & Daniel Fulford
ADVISORY SUMMARY The text-to-speech engine in libretro RetroArch for Windows 1.9.0 - 1.9.4 passes unsanitized input to PowerShell through ... continue reading
ADVISORY SUMMARY The following describes an identified vulnerability in the Froala application in version 3.2.6. Froala is in use on thousands of... continue reading
ADVISORY SUMMARY F5 Networks released a series of security advisories today for seven vulnerabilities affecting their BIG-IP and BIG-IQ products.... continue reading
ADVISORY SUMMARY The Mautic application is affected by stored XSS vulnerabilities. Upon exploitation, these issues allow an authenticated attacker... continue reading
Jan 11, 2021 5:00:00 AM |
By
Chris Davis & Joe DeMesy
ADVISORY SUMMARY The R programming language’s default package manager CRAN is affected by a path traversal vulnerability that can lead to server... continue reading
ADVISORY SUMMARY Four vulnerabilities were discovered in the OpenClinic application, the most severe of which allowed an unauthenticated attacker... continue reading
Nov 4, 2020 6:00:00 AM |
By
Chris Davis & Nazariy Haliley & Ruihai Fang
ADVISORY SUMMARY Two cross-site scripting (XSS) vulnerabilities were discovered in the Immuta application. One instance was stored XSS that could... continue reading
Oct 27, 2020 5:00:00 AM |
By
Chris Davis & Justin Paglierani
ADVISORY SUMMARY The Winston Privacy device was affected by critical and high-risk issues, including a severe command injection vulnerability. The... continue reading
ADVISORY SUMMARY A server-side request forgery (SSRF) vulnerability was found in the Zamzar API when converting an Open Office ODT file to a PDF.... continue reading
Aug 12, 2020 5:00:00 AM |
By
Chris Davis & George Steketee
ADVISORY SUMMARY The following document describes an identified vulnerability in the TinyMCE application in version 5.2.1. TinyMCE is in use on... continue reading
