Description
Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.
References
https://huntr.dev/bounties/397ea68d-1e28-44ff-b830-c8883d067d96
https://github.com/jsreport/jsreport/commit/afaff3804b34b38e959f5ae65f9e672088de13d7
Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.
https://huntr.dev/bounties/397ea68d-1e28-44ff-b830-c8883d067d96
https://github.com/jsreport/jsreport/commit/afaff3804b34b38e959f5ae65f9e672088de13d7
Description Airflow versions 2.7.0 through 2.8.4 have a vulnerability that allows an authenticated user to see sensitive provider configuration via
Description The memory allocation function ACPI_ALLOCATE_ZEROED does not guarantee a successful allocation, but the subsequent code directly dereferences the pointer
Description An insecure deserialization vulnerability exists in the BentoML framework, allowing remote code execution (RCE) by sending a specially crafted