Day: July 1, 2024

Description authentik is an open-source Identity Provider. Access restrictions assigned to an application were not checked when using the OAuth2

Description The NXP Data Co-Processor (DCP) is a built-in hardware module for specific NXP SoCs¹ that implements a dedicated AES

Description ZKsync Era is a layer 2 rollup that uses zero-knowledge proofs to scale Ethereum. There is possible invalid stack

Description dd-trace-cpp is the Datadog distributed tracing for C++. When the library fails to extract trace context due to malformed

Description The WordPress Plugin for Google Maps – WP MAPS plugin for WordPress is vulnerable to SQL Injection via the

Description iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generations, contains a session hijacking

Description Internet2 Grouper before 5.6 allows authentication bypass when LDAP authentication is used in certain ways. This is related to

Description A vulnerability was found in SeaCMS 12.9. It has been declared as critical. Affected by this vulnerability is an

Description A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by