Latest Security News about versions 2 0 15 and 2 1 0 beta 3

  1. Home

Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability.

Overview : Leantime before versions 2.0.15 and 2.1-beta3 has a SQL Injection vulnerability. The impact is high. Malicious users/attackers can execute arbitrary SQL queries negatively affecting the confidentiality, integrity, and availability of the site. Attackers can exfiltrate data like the users' and administrators' password hashes, modify data, or drop tables. The unescaped parameter is "searchUsers" [...]
Continue Reading

Mozilla Firefox and Firefox ESR found with multiple security vulnerabilities

Mozilla Firefox and Firefox ESR have been found to be prone to multiple security vulnerabilities. Ubuntu security advisories (USN-4054-1, USN-4060-1, USN-4060-2 and USN-4064-1)have been noted to affect only CVE-2019-11719 and CVE-2019-11729. An attacker can take advantage and exploit these issues to execute code in the context of the browser and also bypass certain security restrictions […]

Continue Reading

Mozilla Firefox and Firefox ESR found with vulnerablities

Mozilla firefox and firefox ESR are prone to multiple security vulnerabilities. Attackers can utilise this vulnerability to execute arbitrary code in the context of the browser. Thus they can bypass security restrictions to perform unauthorised actions . They can also steal cookie based authentication credentials. Affected versions Mozilla Thunderbird 60.7.2 Mozilla Thunderbird 60.7.1 Mozilla Thunderbird […]

Continue Reading