CVE-2022-21503 : ORACLE CLOUD SERVICES 3.1/4.9 INFORMATION DISCLOSURE cybersecurity insights June 18, 2022 Description Vulnerability in the Oracle Cloud Infrastructure product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with Read More »
CVE-2021-33295 : JOPLIN DESKTOP APP UP TO 1.8.4 CROSS SITE SCRIPTING cybersecurity insights June 17, 2022 Description Cross Site Scripting (XSS) vulnerability in Joplin Desktop App before 1.8.5 allows attackers to execute aribrary code due to Read More »
CVE-2017-20052 : PYTHON 2.7.13 PGADMIN4 UNCONTROLLED SEARCH PATH cybersecurity insights June 16, 2022 Description A vulnerability classified as problematic was found in Python 2.7.13. This vulnerability affects unknown code of the component pgAdmin4. Read More »
CVE-2022-32240 : SAP 3D VISUAL ENTERPRISE VIEWER JT FILE DENIAL OF SERVICE cybersecurity insights June 15, 2022 Description When a user opens manipulated Jupiter Tesselation (.jt, JTReader.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Read More »
CVE-2022-31447 : MAGICPIN 3.4 SVG FILE XML EXTERNAL ENTITY REFERENCE cybersecurity insights June 14, 2022 Description An XML external entity (XXE) injection vulnerability in Magicpin v3.4 allows attackers to access sensitive database information via a Read More »
CVE-2021-41750 : NYSTUDIO107 SEOMATIC PLUGIN 3.4.10 ON CRAFT CMS BASE64 ENCODED URL CROSS SITE SCRIPTING cybersecurity insights June 13, 2022 Description A cross-site scripting (XSS) vulnerability in the SEOmatic plugin 3.4.10 for Craft CMS 3 allows remote attackers to inject Read More »