All Posts by: Prophy Insights

Description All versions of the package create-choo-app3 are vulnerable to Command Injection via the devInstall function due to improper user-input

Description Code Injection in GitHub repository froxlor/froxlor prior to 2.0.10. References https://huntr.dev/bounties/c2a84917-7ac0-4169-81c1-b61e617023de https://github.com/froxlor/froxlor/commit/0034681412057fef2dfe9cce9f8a6e3321f52edc For More Information MITRE

Description IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when

Description Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0.

Description Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any

Description There is a logic error in io_uring’s implementation which can be used to trigger a use-after-free vulnerability leading to

Description The ContentStudio plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several functions

Description D-Link DIR_878_FW1.30B08 was discovered to contain a command injection vulnerability via the component /SetNetworkSettings/SubnetMask. This vulnerability allows attackers to

Description A backdoor in Solar-Log Gateway products allows remote access via web panel gaining super administration privileges to the attacker.

Description SQL Injection vulnerability in LearnPress – WordPress LMS Plugin

Description Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2023-21796. References https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21795 For More Information

Description A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged

Description In ModSecurity before 2.9.7, FILES_TMP_CONTENT sometimes lacked the complete content. This can lead to a Web Application Firewall bypass.

Description Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. In affected versions Sofia-SIP **lacks both

Description In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR,

Description Apache Commons Text performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation

Description Code Injection in GitHub repository pyload/pyload prior to 0.5.0b3.dev31. References https://huntr.dev/bounties/3fd606f7-83e1-4265-b083-2e1889a05e65 https://github.com/pyload/pyload/commit/7d73ba7919e594d783b3411d7ddb87885aea782d For More Information MITRE

Description Izanami is a shared configuration service well-suited for micro-service architecture implementation. Attackers can bypass the authentication in this application

Description Omniverse Kit contains a vulnerability in the reference applications Create, Audio2Face, Isaac Sim, View, Code, and Machinima. These applications

Description InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-284:

Description There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing

Description Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability. References https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21674 For More Information MITRE

Description Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote. References https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin